Vulnerability	Vulnerable Version
M Cross-site Scripting (XSS) jquery-validation is a Client-side form validation made easy Affected versions of this package are vulnerable to Cross-site Scripting (XSS) in the `showLabel()` function, which may take input from a user-controlled placeholder value. This value will populate a message via `$.validator.messages` in a user localizable dictionary. How to fix Cross-site Scripting (XSS)? Upgrade `jquery-validation` to version 1.20.0 or higher.	<1.20.0
M Regular Expression Denial of Service (ReDoS) jquery-validation is a Client-side form validation made easy Affected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS) due to the usage of insecure regex in `url`, and `url2`. How to fix Regular Expression Denial of Service (ReDoS)? Upgrade `jquery-validation` to version 1.19.5 or higher.	<1.19.5
M Regular Expression Denial of Service (ReDoS) jquery-validation is a Client-side form validation made easy Affected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS) which is triggered when an attacker is able to supply arbitrary input to the `url2` method. How to fix Regular Expression Denial of Service (ReDoS)? Upgrade `jquery-validation` to version 1.19.4 or higher.	<1.19.4
H Regular Expression Denial of Service (ReDoS) jquery-validation is a Client-side form validation made easy Affected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS) via the `url` method. How to fix Regular Expression Denial of Service (ReDoS)? Upgrade `jquery-validation` to version 1.19.3 or higher.	<1.19.3

Go back to all versions of this package