The is-my-json-valid package prior to 2.12.4 for Node.js has an incorrect exports['utc-millisec'] regular expression, which allows remote malicious users to cause a denial of service (blocked event loop) via a crafted string.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
is my json valid project is my json valid |