Lucene search
GoogleOSV:GHSA-H9RV-JMMF-4PGXHistoryDec 05, 2019 - 6:44 p.m.
Cross-Site Scripting in serialize-javascript
2019-12-0518:44:37
Google
osv.dev
7
0.001 Low
EPSS
Percentile
22.9%
Versions of serialize-javascript prior to 2.1.1 are vulnerable to Cross-Site Scripting (XSS). The package fails to sanitize serialized regular expressions. This vulnerability does not affect Node.js applications.
Recommendation
Upgrade to version 2.1.1 or later.
| CPE | Name | Operator | Version |
|---|---|---|---|
| serialize-javascript | lt | 2.1.1 |
Related
veracode
veracode
Cross-Site Scripting (XSS)
2019-12-06 03:26:35
nodejs
nodejs
Cross-Site Scripting
2019-12-09 15:26:05
cve
cve
CVE-2019-16769
2019-12-05 19:15:15
githubexploit
githubexploit
Exploit for Cross-site Scripting in Verizon Serialize-Javascript
2020-12-01 09:18:58
redhatcve
redhatcve
CVE-2019-16769
2020-06-17 16:56:11
cvelist
cvelist
github
github
Cross-Site Scripting in serialize-javascript
2019-12-05 18:44:37
nvd
nvd
CVE-2019-16769
2019-12-05 19:15:15
osv
osv
CVE-2019-16769
2019-12-05 19:15:15
prion
prion
Cross site scripting
2019-12-05 19:15:00
nessus
nessus
RHEL 8 : Red Hat OpenShift Service Mesh servicemesh-grafana (RHSA-2020:2796)
2020-07-01 00:00:00
redhat
redhat