2 matches found
CVE-2016-10520
jadedown is vulnerable to regular expression denial of service ReDoS when certain types of user input is passed in...
CVE-2016-10520
CVE-2016-10520 affects the jadedown package and is a Regular Expression Denial of Service (ReDoS) vulnerability triggered by certain user inputs. The connected GHSA advisory provides a PoC-style example illustrating a crafted input causing prolonged blocking, and notes the issue was identified in...