EUVD-2023-0554

Malicious code in bioql PyPI...

USN-6065-1: css-what vulnerabilities

It was discovered that css-what incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to cause a denial of service. CVE-2021-33587, CVE-2022-21222...

DEBIAN-CVE-2021-32821

MooTools is a collection of JavaScript utilities for JavaScript developers. All known versions include a CSS selector parser that is vulnerable to Regular Expression Denial of Service ReDoS. An attack requires that an attacker can inject a string into a CSS selector at runtime, which is quite...

UBUNTU-CVE-2021-32821

MooTools is a collection of JavaScript utilities for JavaScript developers. All known versions include a CSS selector parser that is vulnerable to Regular Expression Denial of Service ReDoS. An attack requires that an attacker can inject a string into a CSS selector at runtime, which is quite...

CVE-2021-32821

CVE-2021-32821 affects MooTools (JavaScript utilities). The issue is a vulnerability in MooTools’ CSS selector parser, where a crafted CSS selector can trigger a Regular Expression Denial of Service (ReDoS) at runtime. Exploitation requires injecting a string into a selector (e.g., via runtime qu...

PT-2023-12174 · Mootools +1 · Mootools +1

Name of the Vulnerable Software and Affected Versions: MooTools versions all known versions Description: The issue concerns a CSS selector parser in MooTools that is vulnerable to Regular Expression Denial of Service ReDoS. An attack can occur if an attacker can inject a string into a CSS selecto...

mootools 资源管理错误漏洞

mootools is a library for web development with OOP support. A resource management error vulnerability exists in mootools, which stems from a CSS selector parser that includes a vulnerability to Regular Expression Denial of Service ReDoS attacks, which can be exploited to inject strings into CSS...

CVE-2021-32821 Regular expression Denial of Service in MooTools

MooTools is a collection of JavaScript utilities for JavaScript developers. All known versions include a CSS selector parser that is vulnerable to Regular Expression Denial of Service ReDoS. An attack requires that an attacker can inject a string into a CSS selector at runtime, which is quite...

Unspecified vulnerability in css-what

css-what is a CSS selector parser. A security vulnerability exists in css-what versions prior to 5.0.1, which stems from the fact that the css-what package does not ensure that property parsing has linear time complexity with respect to input size. No details of the vulnerability are available at...