All vulnerabilities
CVE-2019-16769
Cross-Site Scripting in serialize-javascript
Description
Versions of serialize-javascript prior to 2.1.1 are vulnerable to Cross-Site Scripting (XSS). The package fails to sanitize serialized regular expressions. This vulnerability does not affect Node.js applications.
Recommendation
Upgrade to version 2.1.1 or later.
Patch Available
Fix available through Seal Security.
No upgrade required, protect your application instantly.
Fix without upgrading
Score
4.2
Severity
Medium
Ecosystem
JavaScript
Publish Date
December 5, 2019
Modified Date
March 13, 2026
Score Vector
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L
Affected Versions
