Lucene search
Veracode Vulnerability DatabaseVERACODE:22120HistoryDec 06, 2019 - 3:26 a.m.
Cross-Site Scripting (XSS)
2019-12-0603:26:35
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
14
EPSS
0.001
Percentile
22.7%
serialize-javascript is vulnerable to cross-site scripting (XSS). Unsafe characters are not properly validated and sanitized in serialized regular expressions, allowing an attacker to inject and execute arbitrary Javascript into a victim’s browser. This vulnerability is not affected on Node.js environment since Node.js’s implementation of RegExp.prototype.toString() backslash-escapes all forward slashes in regular expressions.
Related
nodejs
nodejs
Cross-Site Scripting
2019-12-09 15:26:05
githubexploit
githubexploit
Exploit for Cross-site Scripting in Verizon Serialize-Javascript
2020-12-01 09:18:58
cve
cve
CVE-2019-16769
2019-12-05 19:15:15
prion
prion
Cross site scripting
2019-12-05 19:15:00
osv
osv
CVE-2019-16769
2019-12-05 19:15:15
Cross-Site Scripting in serialize-javascript
2019-12-05 18:44:37
nvd
nvd
CVE-2019-16769
2019-12-05 19:15:15
redhatcve
redhatcve
CVE-2019-16769
2020-06-17 16:56:11
github
github
Cross-Site Scripting in serialize-javascript
2019-12-05 18:44:37
cvelist
cvelist
nessus
nessus
RHEL 8 : Red Hat OpenShift Service Mesh servicemesh-grafana (RHSA-2020:2796)
2020-07-01 00:00:00
redhat
redhat