Description
An exponential ReDoS (Regular Expression Denial of Service) can be triggered in the jquery-validation npm package, when an attacker is able to supply arbitrary input to the url2 method
Remediation
References
https://research.jfrog.com/vulnerabilities/jquery-validation-redos-xray-211348/
Related Vulnerabilities
CVE-2020-28436 Vulnerability in npm package google-cloudstorage-commands
CVE-2020-7743 Vulnerability in maven package org.webjars.bower:mathjs
CVE-2022-2466 Vulnerability in maven package io.quarkus:quarkus-smallrye-graphql
CVE-2021-29484 Vulnerability in npm package ghost
CVE-2022-25867 Vulnerability in maven package io.socket:socket.io-client