Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2014-9772HistoryJan 23, 2017 - 9:59 p.m.
CVE-2014-9772
2017-01-2321:59:00
Debian Security Bug Tracker
security-tracker.debian.org
13
EPSS
0.002
Percentile
59.1%
The validator package before 2.0.0 for Node.js allows remote attackers to bypass the cross-site scripting (XSS) filter via hex-encoded characters.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 9 | all | validator.js | < 4.7.1+dfsg1-1.1 | validator.js_4.7.1+dfsg1-1.1_all.deb |
Related
nodejs
nodejs
XSS Filter Bypass via Encoded URL
2015-10-17 19:41:46
nvd
nvd
CVE-2014-9772
2017-01-23 21:59:00
cvelist
cvelist
CVE-2014-9772
2017-01-23 21:00:00
github
github
XSS Filter Bypass via Encoded URL in validator
2018-11-06 23:12:49
ubuntucve
ubuntucve
CVE-2014-9772
2017-01-23 00:00:00
prion
prion
Cross site scripting
2017-01-23 21:59:00
osv
osv
XSS Filter Bypass via Encoded URL in validator
2018-11-06 23:12:49
cve
cve
CVE-2014-9772
2017-01-23 21:59:00
f5
f5
K30110324 : Multiple Node.js vulnerabilities
2018-10-16 00:00:00