Homepage
About Snyk

validators@0.4.0 vulnerabilities

Python Data Validation for Humans™

Go back to all versions of this package
Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the validators package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • M
Regular Expression Denial of Service (ReDoS)

validators is a package for Python Data Validation for Humans.

Affected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS) via the torbot.modules.validators.validate_link function. An attacker can cause an application crash by using a well-crafted argument. This is due to the use of a regular expression with exponential complexity. An attacker can exploit this by using a well-crafted URL argument, causing a Denial of Service on the system.

How to fix Regular Expression Denial of Service (ReDoS)?

Upgrade validators to version 0.21.0 or higher.

[,0.21.0)
Go back to all versions of this package