korzio/djv

Releases16

Frequency2 months 2 weeks

Last Release about 7 years ago

Stars288

Dynamic JSON Schema Validator - Supports draft-04/06

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2020-28464 ↗	Jan 4, 2021Monday, 4 January 2021, 12:15	9.8 CRITICAL	10 HIGH
This affects the package djv before 2.1.4. By controlling the schema file, an attacker can run arbitrary JavaScript code on the victim machine.