is-my-json-valid (npm) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the npm package is-my-json-valid, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (2)
CVE-2016-2537 — CVSS 7.5 (high): The is-my-json-valid package before 2.12.4 for Node.js has an incorrect exports['utc-millisec'] regular expression, which allows remote…
CVE-2018-1107 — CVSS 5.3 (medium): It was discovered that the is-my-json-valid JavaScript library used an inefficient regular expression to validate JSON fields defined to…