In schema-inspector before 1.6.9, a maliciously crafted JavaScript object can bypass the sanitize()
and the validate()
function used within schema-inspector.
CPE | Name | Operator | Version |
---|---|---|---|
schema-inspector | eq | 1.4.6 | |
schema-inspector | eq | 1.4.8 | |
schema-inspector | eq | 1.4.7 | |
schema-inspector | eq | 1.6.7 | |
schema-inspector | eq | 1.6.8 |