npm markdown-link-extractor is used to extract links from Markdown text. npm markdown-link-extractor versions prior to 3.0.2 and 4.0.0 contain a denial of service vulnerability that stems from not properly handling incoming error messages, which could be exploited by an attacker to cause a denial of service in the application. exploit this vulnerability to cause a denial of service of the application.
CPE | Name | Operator | Version |
---|---|---|---|
npm markdown-link-extractor | lt | 3.0.2 | |
npm markdown-link-extractor | eq | 4.0.0 |