jquery-validation (npm) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the npm package jquery-validation, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (4)
CVE-2022-31147 — CVSS 7.5 (high): The jQuery Validation Plugin (jquery-validation) provides drop-in validation for forms. Versions of jquery-validation prior to 1.19.5 are…
CVE-2025-3573 — CVSS 6.1 (medium): Versions of the package jquery-validation before 1.20.0 are vulnerable to Cross-site Scripting (XSS) in the showLabel() function, which may…
CVE-2021-43306 — CVSS 5.9 (medium): An exponential ReDoS (Regular Expression Denial of Service) can be triggered in the jquery-validation npm package, when an attacker is able…
CVE-2021-21252 — CVSS 5.3 (medium): The jQuery Validation Plugin provides drop-in validation for your existing forms. It is published as an npm package "jquery-validation"…