According to its self-reported version number, Moment.js is 2.18.x prior to 2.29.4. Therefore, it may be affected by a regular expression denial of service vulnerability via the preprocessRFC2822() function in from-string.js, when processing a very long crafted string.
Note that the scanner has not tested for these issues but has instead relied only on the applicationβs self-reported version number.
No source data
Vendor | Product | Version | CPE |
---|---|---|---|
moment_project | moment | * | cpe:2.3:a:moment_project:moment:*:*:*:*:*:*:*:* |