Vulnerability	Vulnerable Version
M Cross-site Scripting (XSS) jquery-validation is a Client-side form validation made easy Affected versions of this package are vulnerable to Cross-site Scripting (XSS) in the `showLabel()` function, which may take input from a user-controlled placeholder value. This value will populate a message via `$.validator.messages` in a user localizable dictionary. How to fix Cross-site Scripting (XSS)? Upgrade `jquery-validation` to version 1.20.0 or higher.	<1.20.0
M Regular Expression Denial of Service (ReDoS) jquery-validation is a Client-side form validation made easy Affected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS) due to the usage of insecure regex in `url`, and `url2`. How to fix Regular Expression Denial of Service (ReDoS)? Upgrade `jquery-validation` to version 1.19.5 or higher.	<1.19.5

Cross-site Scripting (XSS)

jquery-validation is a Client-side form validation made easy

Affected versions of this package are vulnerable to Cross-site Scripting (XSS) in the showLabel() function, which may take input from a user-controlled placeholder value. This value will populate a message via $.validator.messages in a user localizable dictionary.

How to fix Cross-site Scripting (XSS)?

Upgrade jquery-validation to version 1.20.0 or higher.

<1.20.0

Regular Expression Denial of Service (ReDoS)

jquery-validation is a Client-side form validation made easy

Affected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS) due to the usage of insecure regex in url, and url2.

How to fix Regular Expression Denial of Service (ReDoS)?

Upgrade jquery-validation to version 1.19.5 or higher.

<1.19.5

Go back to all versions of this package