Description
An exponential ReDoS (Regular Expression Denial of Service) can be triggered in the jquery-validation npm package, when an attacker is able to supply arbitrary input to the url2 method
Remediation
References
https://research.jfrog.com/vulnerabilities/jquery-validation-redos-xray-211348/
Related Vulnerabilities
CVE-2010-2076 Vulnerability in maven package org.apache.cxf:cxf-bundle-jaxrs
CVE-2021-23337 Vulnerability in maven package org.webjars.bowergithub.lodash:lodash
CVE-2023-2507 Vulnerability in npm package clevertap-cordova
CVE-2020-7737 Vulnerability in npm package safetydance
CVE-2020-36518 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind