Lucene search
+L

251 matches found

cnnvd
cnnvd
added 2023/02/12 12:0 a.m.5 views

simple-markdown 安全漏洞

Khan Academy simple-markdown is a Markdown parser. A security vulnerability exists in simple-markdown version 0.5.1. An attacker has exploited the vulnerability to reduce regular expression complexity...

7.5CVSS5.6AI score0.0094EPSS
Exploits0References5
osv
osv
added 2023/02/11 12:13 a.m.14 views

GHSA-8X6C-CV3V-VP6G Withdrawn: cacheable-request depends on http-cache-semantics, which is vulnerable to Regular Expression Denial of Service

This advisory is withdawn. cacheable-request depends on http-cache-semanttics, which contains an Inefficient Regular Expression Complexity in versions prior to 4.1.1 of that package. cacheable-request has been updated to rely on the fixed version in 10.2.7. Summary of http-cache-semantics...

7.5CVSS6.9AI score
Exploits0References4
github
github
added 2023/02/04 6:30 a.m.223 views

is-url Inefficient Regular Expression Complexity vulnerability

A vulnerability was found in Segmentio is-url up to 1.2.2. It has been rated as problematic. Affected by this issue is an unknown functionality of the file index.js. The manipulation leads to inefficient regular expression complexity. The attack may be launched remotely. Upgrading to version 1.2....

7.5CVSS3.6AI score0.00944EPSS
Exploits0References7Affected Software1
prion
prion
added 2023/02/04 4:15 a.m.10 views

Information disclosure

A vulnerability was found in Segmentio is-url up to 1.2.2. It has been rated as problematic. Affected by this issue is some unknown functionality of the file index.js. The manipulation leads to inefficient regular expression complexity. The attack may be launched remotely. Upgrading to version...

5CVSS7.5AI score0.00944EPSS
Exploits0References5Affected Software1
cvelist
cvelist
added 2023/02/04 3:57 a.m.24 views

CVE-2018-25079 Segmentio is-url index.js redos

A vulnerability was found in Segmentio is-url up to 1.2.2. It has been rated as problematic. Affected by this issue is some unknown functionality of the file index.js. The manipulation leads to inefficient regular expression complexity. The attack may be launched remotely. Upgrading to version...

4.3CVSS7.5AI score0.00944EPSS
Exploits0References5
veracode
veracode
added 2023/01/20 7:32 a.m.33 views

Regular Expression Denial Of Service (ReDoS)

papapars is vulnerable to Regular Expression Denial of Service ReDoS. The vulnerability exists in papaparse.js due to inefficient regular expression complexity which allows an attacker to crash the application by submitting a malicious string...

7.5CVSS7.1AI score0.01388EPSS
Exploits1References8Affected Software2
osv
osv
added 2023/01/18 3:31 a.m.49 views

GHSA-QJM7-55VV-3C5F mel-spintax has Inefficient Regular Expression Complexity

A vulnerability was found in melnaron mel-spintax. It has been rated as problematic. Affected by this issue is some unknown functionality of the file lib/spintax.js. The manipulation of the argument text leads to inefficient regular expression complexity. The name of the patch is...

4.3CVSS7.5AI score0.00875EPSS
Exploits0References4
github
github
added 2023/01/18 3:31 a.m.36 views

mel-spintax has Inefficient Regular Expression Complexity

A vulnerability was found in melnaron mel-spintax. It has been rated as problematic. Affected by this issue is some unknown functionality of the file lib/spintax.js. The manipulation of the argument text leads to inefficient regular expression complexity. The name of the patch is...

7.5CVSS3.4AI score0.00875EPSS
Exploits0References4Affected Software1
osv
osv
added 2023/01/18 1:15 a.m.16 views

CVE-2018-25077

A vulnerability was found in melnaron mel-spintax. It has been rated as problematic. Affected by this issue is some unknown functionality of the file lib/spintax.js. The manipulation of the argument text leads to inefficient regular expression complexity. The name of the patch is...

7.5CVSS7.6AI score
Exploits0References3
cvelist
cvelist
added 2023/01/18 12:58 a.m.31 views

CVE-2018-25077 melnaron mel-spintax spintax.js redos

A vulnerability was found in melnaron mel-spintax. It has been rated as problematic. Affected by this issue is some unknown functionality of the file lib/spintax.js. The manipulation of the argument text leads to inefficient regular expression complexity. The name of the patch is...

3.5CVSS7.6AI score0.00875EPSS
Exploits0References3
cvelist
cvelist
added 2023/01/17 7:58 p.m.23 views

CVE-2022-4891 Sisimai string.rb to_plain redos

A vulnerability has been found in Sisimai up to 4.25.14p11 and classified as problematic. This vulnerability affects the function toplain of the file lib/sisimai/string.rb. The manipulation leads to inefficient regular expression complexity. The exploit has been disclosed to the public and may be...

3.5CVSS7.8AI score0.01336EPSS
Exploits1References6
osv
osv
added 2023/01/17 7:58 p.m.13 views

CVE-2022-4891 Sisimai string.rb to_plain redos

A vulnerability has been found in Sisimai up to 4.25.14p11 and classified as problematic. This vulnerability affects the function toplain of the file lib/sisimai/string.rb. The manipulation leads to inefficient regular expression complexity. The exploit has been disclosed to the public and may be...

3.5CVSS4.8AI score0.01336EPSS
Exploits1References8
cnnvd
cnnvd
added 2023/01/17 12:0 a.m.4 views

rb-sisimai 安全漏洞

rb-sisimai is a Ruby library for parsing RFC5322 returned emails and generating structured data from the parsed results. A security vulnerability exists in rb-sisimai version 4.25.14p11 and earlier. An attacker exploited the vulnerability to cause a regular expression complexity reduction...

7.5CVSS5.5AI score0.01336EPSS
Exploits1References7
github
github
added 2023/01/11 3:30 p.m.42 views

Duplicate Advisory: PapaParse Inefficient Regular Expression Complexity vulnerability

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-qvjc-g5vr-mfgr. This link is maintained to preserve external references. Original Description A vulnerability was found in mholt PapaParse up to 5.1.x. It has been classified as problematic. Affected is an unkno...

7.5CVSS7.1AI score0.01388EPSS
Exploits1References8Affected Software1
github
github
added 2023/01/11 3:30 p.m.23 views

skeemas Inefficient Regular Expression Complexity vulnerability

A vulnerability was found in Prestaul skeemas and classified as problematic. This issue affects some unknown processing of the file validators/base.js. The manipulation of the argument uri leads to inefficient regular expression complexity. The name of the patch is...

7.5CVSS3.8AI score0.0091EPSS
Exploits0References5Affected Software1
osv
osv
added 2023/01/11 3:15 p.m.15 views

CVE-2018-25074

A vulnerability was found in Prestaul skeemas and classified as problematic. This issue affects some unknown processing of the file validators/base.js. The manipulation of the argument uri leads to inefficient regular expression complexity. The patch is named...

7.5CVSS7.7AI score
Exploits0References3
prion
prion
added 2023/01/11 3:15 p.m.14 views

Design/Logic Flaw

A vulnerability was found in Prestaul skeemas and classified as problematic. This issue affects some unknown processing of the file validators/base.js. The manipulation of the argument uri leads to inefficient regular expression complexity. The patch is named...

5CVSS7.6AI score0.0091EPSS
Exploits0References3Affected Software1
debiancve
debiancve
added 2023/01/11 2:50 p.m.39 views

CVE-2020-36649

A vulnerability was found in mholt PapaParse up to 5.1.x. It has been classified as problematic. Affected is an unknown function of the file papaparse.js. The manipulation leads to inefficient regular expression complexity. Upgrading to version 5.2.0 is able to address this issue. The name of the...

7.5CVSS4.4AI score0.01388EPSS
Exploits1
cvelist
cvelist
added 2023/01/11 2:49 p.m.32 views

CVE-2018-25074 Prestaul skeemas base.js redos

A vulnerability was found in Prestaul skeemas and classified as problematic. This issue affects some unknown processing of the file validators/base.js. The manipulation of the argument uri leads to inefficient regular expression complexity. The patch is named...

3.5CVSS7.6AI score0.0091EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2023/01/11 2:49 p.m.7 views

CVE-2018-25074 Prestaul skeemas base.js redos

A vulnerability was found in Prestaul skeemas and classified as problematic. This issue affects some unknown processing of the file validators/base.js. The manipulation of the argument uri leads to inefficient regular expression complexity. The patch is named...

3.5CVSS6.9AI score0.0091EPSS
Exploits0References3
Rows per page
Query Builder