CVE-2025-12758 — CVSS 7.5 (high): Versions of the package validator before 13.15.22 are vulnerable to Incomplete Filtering of One or More Instances of Special Elements in…
CVE-2025-56200 — CVSS 6.1 (medium): A URL validation bypass vulnerability exists in validator.js through version 13.15.15. The isURL() function uses '://' as a delimiter to…