Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-apr7-9vue-3uhr
Summary
Regular expression denial of service in jquery-validation
An exponential ReDoS (Regular Expression Denial of Service) can be triggered in the jquery-validation npm package, when an attacker is able to supply arbitrary input to the url2 method
Aliases
0
alias CVE-2021-43306
1
alias GHSA-j9m2-h2pv-wvph
Fixed_packages
0
url pkg:deb/debian/node-jquery-validation@0?distro=sid
purl pkg:deb/debian/node-jquery-validation@0?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/node-jquery-validation@0%3Fdistro=sid
1
url pkg:deb/debian/node-jquery-validation@1.21.0%2Bdfsg-4?distro=sid
purl pkg:deb/debian/node-jquery-validation@1.21.0%2Bdfsg-4?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/node-jquery-validation@1.21.0%252Bdfsg-4%3Fdistro=sid
2
url pkg:npm/jquery-validation@1.19.4
purl pkg:npm/jquery-validation@1.19.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dgq1-519m-6ubb
1
vulnerability VCID-zd8d-c1nk-g7a4
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/jquery-validation@1.19.4
3
url pkg:nuget/jQuery.Validation@1.19.4
purl pkg:nuget/jQuery.Validation@1.19.4
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/jQuery.Validation@1.19.4
Affected_packages
0
url pkg:npm/jquery-validation@1.13.1
purl pkg:npm/jquery-validation@1.13.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a286-32jj-eubk
1
vulnerability VCID-apr7-9vue-3uhr
2
vulnerability VCID-dgq1-519m-6ubb
3
vulnerability VCID-zd8d-c1nk-g7a4
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/jquery-validation@1.13.1
1
url pkg:npm/jquery-validation@1.14.0
purl pkg:npm/jquery-validation@1.14.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a286-32jj-eubk
1
vulnerability VCID-apr7-9vue-3uhr
2
vulnerability VCID-dgq1-519m-6ubb
3
vulnerability VCID-zd8d-c1nk-g7a4
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/jquery-validation@1.14.0
2
url pkg:npm/jquery-validation@1.15.0-pre
purl pkg:npm/jquery-validation@1.15.0-pre
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a286-32jj-eubk
1
vulnerability VCID-apr7-9vue-3uhr
2
vulnerability VCID-dgq1-519m-6ubb
3
vulnerability VCID-zd8d-c1nk-g7a4
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/jquery-validation@1.15.0-pre
3
url pkg:npm/jquery-validation@1.15.0
purl pkg:npm/jquery-validation@1.15.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a286-32jj-eubk
1
vulnerability VCID-apr7-9vue-3uhr
2
vulnerability VCID-dgq1-519m-6ubb
3
vulnerability VCID-zd8d-c1nk-g7a4
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/jquery-validation@1.15.0
4
url pkg:npm/jquery-validation@1.15.1
purl pkg:npm/jquery-validation@1.15.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a286-32jj-eubk
1
vulnerability VCID-apr7-9vue-3uhr
2
vulnerability VCID-dgq1-519m-6ubb
3
vulnerability VCID-zd8d-c1nk-g7a4
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/jquery-validation@1.15.1
5
url pkg:npm/jquery-validation@1.16.0
purl pkg:npm/jquery-validation@1.16.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a286-32jj-eubk
1
vulnerability VCID-apr7-9vue-3uhr
2
vulnerability VCID-dgq1-519m-6ubb
3
vulnerability VCID-zd8d-c1nk-g7a4
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/jquery-validation@1.16.0
6
url pkg:npm/jquery-validation@1.17.0
purl pkg:npm/jquery-validation@1.17.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a286-32jj-eubk
1
vulnerability VCID-apr7-9vue-3uhr
2
vulnerability VCID-dgq1-519m-6ubb
3
vulnerability VCID-zd8d-c1nk-g7a4
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/jquery-validation@1.17.0
7
url pkg:npm/jquery-validation@1.18.0
purl pkg:npm/jquery-validation@1.18.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a286-32jj-eubk
1
vulnerability VCID-apr7-9vue-3uhr
2
vulnerability VCID-dgq1-519m-6ubb
3
vulnerability VCID-zd8d-c1nk-g7a4
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/jquery-validation@1.18.0
8
url pkg:npm/jquery-validation@1.19.0
purl pkg:npm/jquery-validation@1.19.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a286-32jj-eubk
1
vulnerability VCID-apr7-9vue-3uhr
2
vulnerability VCID-dgq1-519m-6ubb
3
vulnerability VCID-zd8d-c1nk-g7a4
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/jquery-validation@1.19.0
9
url pkg:npm/jquery-validation@1.19.1
purl pkg:npm/jquery-validation@1.19.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a286-32jj-eubk
1
vulnerability VCID-apr7-9vue-3uhr
2
vulnerability VCID-dgq1-519m-6ubb
3
vulnerability VCID-zd8d-c1nk-g7a4
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/jquery-validation@1.19.1
10
url pkg:npm/jquery-validation@1.19.2
purl pkg:npm/jquery-validation@1.19.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a286-32jj-eubk
1
vulnerability VCID-apr7-9vue-3uhr
2
vulnerability VCID-dgq1-519m-6ubb
3
vulnerability VCID-zd8d-c1nk-g7a4
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/jquery-validation@1.19.2
11
url pkg:npm/jquery-validation@1.19.3
purl pkg:npm/jquery-validation@1.19.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-apr7-9vue-3uhr
1
vulnerability VCID-dgq1-519m-6ubb
2
vulnerability VCID-zd8d-c1nk-g7a4
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/jquery-validation@1.19.3
12
url pkg:npm/jquery-validation@1.19.4-pre
purl pkg:npm/jquery-validation@1.19.4-pre
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-apr7-9vue-3uhr
1
vulnerability VCID-dgq1-519m-6ubb
2
vulnerability VCID-zd8d-c1nk-g7a4
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/jquery-validation@1.19.4-pre
13
url pkg:nuget/jQuery.Validation@1.6.0
purl pkg:nuget/jQuery.Validation@1.6.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a286-32jj-eubk
1
vulnerability VCID-apr7-9vue-3uhr
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/jQuery.Validation@1.6.0
14
url pkg:nuget/jQuery.Validation@1.7.0
purl pkg:nuget/jQuery.Validation@1.7.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a286-32jj-eubk
1
vulnerability VCID-apr7-9vue-3uhr
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/jQuery.Validation@1.7.0
15
url pkg:nuget/jQuery.Validation@1.8.0
purl pkg:nuget/jQuery.Validation@1.8.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a286-32jj-eubk
1
vulnerability VCID-apr7-9vue-3uhr
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/jQuery.Validation@1.8.0
16
url pkg:nuget/jQuery.Validation@1.8.0.1
purl pkg:nuget/jQuery.Validation@1.8.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a286-32jj-eubk
1
vulnerability VCID-apr7-9vue-3uhr
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/jQuery.Validation@1.8.0.1
17
url pkg:nuget/jQuery.Validation@1.8.1
purl pkg:nuget/jQuery.Validation@1.8.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a286-32jj-eubk
1
vulnerability VCID-apr7-9vue-3uhr
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/jQuery.Validation@1.8.1
18
url pkg:nuget/jQuery.Validation@1.9.0
purl pkg:nuget/jQuery.Validation@1.9.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a286-32jj-eubk
1
vulnerability VCID-apr7-9vue-3uhr
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/jQuery.Validation@1.9.0
19
url pkg:nuget/jQuery.Validation@1.9.0.1
purl pkg:nuget/jQuery.Validation@1.9.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a286-32jj-eubk
1
vulnerability VCID-apr7-9vue-3uhr
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/jQuery.Validation@1.9.0.1
20
url pkg:nuget/jQuery.Validation@1.10.0
purl pkg:nuget/jQuery.Validation@1.10.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a286-32jj-eubk
1
vulnerability VCID-apr7-9vue-3uhr
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/jQuery.Validation@1.10.0
21
url pkg:nuget/jQuery.Validation@1.11.0
purl pkg:nuget/jQuery.Validation@1.11.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a286-32jj-eubk
1
vulnerability VCID-apr7-9vue-3uhr
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/jQuery.Validation@1.11.0
22
url pkg:nuget/jQuery.Validation@1.11.1
purl pkg:nuget/jQuery.Validation@1.11.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a286-32jj-eubk
1
vulnerability VCID-apr7-9vue-3uhr
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/jQuery.Validation@1.11.1
23
url pkg:nuget/jQuery.Validation@1.12.0
purl pkg:nuget/jQuery.Validation@1.12.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a286-32jj-eubk
1
vulnerability VCID-apr7-9vue-3uhr
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/jQuery.Validation@1.12.0
24
url pkg:nuget/jQuery.Validation@1.13.0
purl pkg:nuget/jQuery.Validation@1.13.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a286-32jj-eubk
1
vulnerability VCID-apr7-9vue-3uhr
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/jQuery.Validation@1.13.0
25
url pkg:nuget/jQuery.Validation@1.13.1
purl pkg:nuget/jQuery.Validation@1.13.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a286-32jj-eubk
1
vulnerability VCID-apr7-9vue-3uhr
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/jQuery.Validation@1.13.1
26
url pkg:nuget/jQuery.Validation@1.14.0
purl pkg:nuget/jQuery.Validation@1.14.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a286-32jj-eubk
1
vulnerability VCID-apr7-9vue-3uhr
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/jQuery.Validation@1.14.0
27
url pkg:nuget/jQuery.Validation@1.15.0
purl pkg:nuget/jQuery.Validation@1.15.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a286-32jj-eubk
1
vulnerability VCID-apr7-9vue-3uhr
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/jQuery.Validation@1.15.0
28
url pkg:nuget/jQuery.Validation@1.15.1
purl pkg:nuget/jQuery.Validation@1.15.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a286-32jj-eubk
1
vulnerability VCID-apr7-9vue-3uhr
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/jQuery.Validation@1.15.1
29
url pkg:nuget/jQuery.Validation@1.16.0
purl pkg:nuget/jQuery.Validation@1.16.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a286-32jj-eubk
1
vulnerability VCID-apr7-9vue-3uhr
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/jQuery.Validation@1.16.0
30
url pkg:nuget/jQuery.Validation@1.17.0
purl pkg:nuget/jQuery.Validation@1.17.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a286-32jj-eubk
1
vulnerability VCID-apr7-9vue-3uhr
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/jQuery.Validation@1.17.0
31
url pkg:nuget/jQuery.Validation@1.19.1
purl pkg:nuget/jQuery.Validation@1.19.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a286-32jj-eubk
1
vulnerability VCID-apr7-9vue-3uhr
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/jQuery.Validation@1.19.1
32
url pkg:nuget/jQuery.Validation@1.19.2
purl pkg:nuget/jQuery.Validation@1.19.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a286-32jj-eubk
1
vulnerability VCID-apr7-9vue-3uhr
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/jQuery.Validation@1.19.2
33
url pkg:nuget/jQuery.Validation@1.19.3
purl pkg:nuget/jQuery.Validation@1.19.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-apr7-9vue-3uhr
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/jQuery.Validation@1.19.3
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-43306
reference_id
reference_type
scores
0
value 0.00829
scoring_system epss
scoring_elements 0.74553
published_at 2026-04-21T12:55:00Z
1
value 0.00829
scoring_system epss
scoring_elements 0.7456
published_at 2026-04-18T12:55:00Z
2
value 0.00844
scoring_system epss
scoring_elements 0.74749
published_at 2026-04-04T12:55:00Z
3
value 0.00844
scoring_system epss
scoring_elements 0.74722
published_at 2026-04-07T12:55:00Z
4
value 0.00844
scoring_system epss
scoring_elements 0.74755
published_at 2026-04-08T12:55:00Z
5
value 0.00844
scoring_system epss
scoring_elements 0.74769
published_at 2026-04-09T12:55:00Z
6
value 0.00844
scoring_system epss
scoring_elements 0.74793
published_at 2026-04-11T12:55:00Z
7
value 0.00844
scoring_system epss
scoring_elements 0.74772
published_at 2026-04-12T12:55:00Z
8
value 0.00844
scoring_system epss
scoring_elements 0.74763
published_at 2026-04-13T12:55:00Z
9
value 0.00844
scoring_system epss
scoring_elements 0.74719
published_at 2026-04-01T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-43306
1
reference_url https://github.com/jquery-validation/jquery-validation
reference_id
reference_type
scores
0
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/jquery-validation/jquery-validation
2
reference_url https://github.com/jquery-validation/jquery-validation/commit/69cb17ed774b427f7e2ffcdf197968231725c30e
reference_id
reference_type
scores
0
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/jquery-validation/jquery-validation/commit/69cb17ed774b427f7e2ffcdf197968231725c30e
3
reference_url https://github.com/jquery-validation/jquery-validation/pull/2428
reference_id
reference_type
scores
0
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/jquery-validation/jquery-validation/pull/2428
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-43306
reference_id
reference_type
scores
0
value LOW
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-43306
5
reference_url https://research.jfrog.com/vulnerabilities/jquery-validation-redos-xray-211348
reference_id
reference_type
scores
0
value LOW
scoring_system generic_textual
scoring_elements
url https://research.jfrog.com/vulnerabilities/jquery-validation-redos-xray-211348
6
reference_url https://research.jfrog.com/vulnerabilities/jquery-validation-redos-xray-211348/
reference_id
reference_type
scores
url https://research.jfrog.com/vulnerabilities/jquery-validation-redos-xray-211348/
7
reference_url https://github.com/advisories/GHSA-j9m2-h2pv-wvph
reference_id GHSA-j9m2-h2pv-wvph
reference_type
scores
0
value LOW
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-j9m2-h2pv-wvph
Weaknesses
0
cwe_id 1333
name Inefficient Regular Expression Complexity
description The product uses a regular expression with an inefficient, possibly exponential worst-case computational complexity that consumes excessive CPU cycles.
1
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
2
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
Exploits
Severity_range_score0.1 - 3
Exploitability0.5
Weighted_severity2.7
Risk_score1.4
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-apr7-9vue-3uhr