91 matches found
Regular Expression Denial of Service (ReDoS)
Overview org.webjars.bower:codemirror is a versatile text editor implemented in JavaScript for the browser. Affected versions of this package are vulnerable to Regular Expression Denial of Service ReDoS via multiple locations in markdown.js. An attacker can cause excessive resource consumption by...
Regular Expression Denial of Service (ReDoS)
Overview org.apache.marmotta.webjars:codemirror is a versatile text editor implemented in JavaScript for the browser. Affected versions of this package are vulnerable to Regular Expression Denial of Service ReDoS via multiple locations in markdown.js. An attacker can cause excessive resource...
de.chandre.admin-tools:admin-tools-dbbrowser (>=1.1.1 <=1.1.7.3), de.chandre.admin-tools:admin-tools-filebrowser (>=1.1.1 <=1.1.7.3) +3 more potentially affected by CVE-2025-6493 via org.webjars.bower:codemirror (>=3.23.0 <=5.58.2)
org.webjars.bower:codemirror MAVEN version =3.23.0, =1.1.1, =1.1.1, =3.4.3, =3.4.4 - org.webjars.bower:mergely =3.3.6 Source cves: CVE-2025-6493 Source advisory: SNYK:JAVA-ORGWEBJARSBOWER-10494097...
Regular Expression Denial of Service (ReDoS)
Overview org.webjars.npm:codemirror is a versatile text editor implemented in JavaScript for the browser. Affected versions of this package are vulnerable to Regular Expression Denial of Service ReDoS via multiple locations in markdown.js. An attacker can cause excessive resource consumption by...
org.webjars.bowergithub.advanced-rest-client:code-mirror (=2.0.1), org.webjars.bowergithub.angular-ui:ui-codemirror (>=0.1.6 <=0.3.0) potentially affected by CVE-2025-6493 via org.webjars.bowergithub.components:codemirror (>=4.13.0 <=5.65.12)
org.webjars.bowergithub.components:codemirror MAVEN version =4.13.0, =0.1.6, =0.3.0 Source cves: CVE-2025-6493 Source advisory: SNYK:JAVA-ORGWEBJARSBOWERGITHUBCOMPONENTS-10494093...
Regular Expression Denial of Service (ReDoS)
Overview org.webjars.bowergithub.codemirror:codemirror is a versatile text editor implemented in JavaScript for the browser. Affected versions of this package are vulnerable to Regular Expression Denial of Service ReDoS via multiple locations in markdown.js. An attacker can cause excessive resour...
Regular Expression Denial of Service (ReDoS)
Overview org.webjars:codemirror is a versatile text editor implemented in JavaScript for the browser. Affected versions of this package are vulnerable to Regular Expression Denial of Service ReDoS via multiple locations in markdown.js. An attacker can cause excessive resource consumption by...
com.gitblit.fathom:fathom-integration-test (>=0.5.0 <=1.0.1), com.github.dreampie:jfinal-dreampie (=1.0) +30 more potentially affected by CVE-2025-6493 via org.webjars:codemirror (>=3.15 <=5.8)
org.webjars:codemirror MAVEN version =3.15, =0.5.0, =1.0.0, =1.0.1, =2.3.0.CR1, =2.1.8.0, =2.1.8.0, =2.1.8.0, =2.1.8.0, =3.2.0, =3.2.0, =3.2.0, =3.2.0, =3.2.0, =1.7.0, =1.7.5 and more Source cves: CVE-2025-6493 Source advisory: SNYK:JAVA-ORGWEBJARS-10494095...
Regular Expression Denial of Service (ReDoS)
Overview org.webjars.bowergithub.components:codemirror is a versatile text editor implemented in JavaScript for the browser. Affected versions of this package are vulnerable to Regular Expression Denial of Service ReDoS via multiple locations in markdown.js. An attacker can cause excessive resour...
DEBIAN-CVE-2025-6493
A weakness has been identified in CodeMirror up to 5.65.20. Affected is an unknown function of the file mode/markdown/markdown.js of the component Markdown Mode. This manipulation causes inefficient regular expression complexity. It is possible to initiate the attack remotely. The exploit has bee...
CVE-2025-6493
A weakness has been identified in CodeMirror up to 5.65.20. Affected is an unknown function of the file mode/markdown/markdown.js of the component Markdown Mode. This manipulation causes inefficient regular expression complexity. It is possible to initiate the attack remotely. The exploit has bee...
CVE-2025-6493
A weakness has been identified in CodeMirror up to 5.65.20. Affected is an unknown function of the file mode/markdown/markdown.js of the component Markdown Mode. This manipulation causes inefficient regular expression complexity. It is possible to initiate the attack remotely. The exploit has bee...
CVE-2025-6493
CVE-2025-6493 affects CodeMirror (Markdown Mode) up to 5.65.20. An unknown function in file mode/markdown/markdown.js can cause inefficient regular expression complexity, enabling a remote attack. IBM/Consoles describe the vulnerability and advise upgrading the affected component to CodeMirror 6 ...
CVE-2025-6493 CodeMirror Markdown Mode markdown.js redos
A weakness has been identified in CodeMirror up to 5.65.20. Affected is an unknown function of the file mode/markdown/markdown.js of the component Markdown Mode. This manipulation causes inefficient regular expression complexity. It is possible to initiate the attack remotely. The exploit has bee...
CVE-2025-6493 CodeMirror Markdown Mode markdown.js redos
A weakness has been identified in CodeMirror up to 5.65.20. Affected is an unknown function of the file mode/markdown/markdown.js of the component Markdown Mode. This manipulation causes inefficient regular expression complexity. It is possible to initiate the attack remotely. The exploit has bee...
CVE-2025-6493
A weakness has been identified in CodeMirror up to 5.65.20. Affected is an unknown function of the file mode/markdown/markdown.js of the component Markdown Mode. This manipulation causes inefficient regular expression complexity. It is possible to initiate the attack remotely. The exploit has bee...
PT-2025-26570 · Unknown +1 · Codemirror +1
Name of the Vulnerable Software and Affected Versions: CodeMirror versions up to 5.17.0 Description: A vulnerability was found in the Markdown Mode component, specifically in the file mode/markdown/markdown.js, leading to inefficient regular expression complexity. This issue can be exploited...
CodeMirror 安全漏洞
CodeMirror is a versatile text editor implemented for browsers using JavaScript by the Codemirror team. The software is specialized for editing code and features more than 100 language modes and a variety of plugins for more advanced editing features, each with full-featured code and syntax...
CVE-2024-1791
The CodeMirror Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Code Mirror block in all versions up to, and including, 1.2.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level acce...
K000140225: Codemirror vulnerability CVE-2020-7760
Security Advisory Description This affects the package codemirror before 5.58.2; the package org.apache.marmotta.webjars:codemirror before 5.58.2. The vulnerable regular expression is located in...