0.001 Low
EPSS
Percentile
41.2%
all versions of url-regex are vulnerable to Regular Expression Denial of Service. An attacker providing a very long string in String.test can cause a Denial of Service.
github.com/kevva/url-regex
github.com/kevva/url-regex/issues/70
nvd.nist.gov/vuln/detail/CVE-2020-7661
snyk.io/vuln/SNYK-JS-URLREGEX-569472