3 matches found
Regular Expression Denial of Service
Overview Impact @progfay/scrapbox-parser before 6.0.3 and 7.0.2 are vulnerable to Regular Expression Denial of Service ReDoS in DecorationNode, StrongNode and ExternalLinkNode. An attacker may be able to craft text which causes the application to consume an excessive amount of CPU. Recommendation...
CVE-2021-27405
A ReDoS regular expression denial of service flaw was found in the @progfay/scrapbox-parser package before 6.0.3 for Node.js...
CVE-2021-27405
CVE-2021-27405 affects the Node.js package "@progfay/scrapbox-parser" before version 6.0.3 (also 7.0.2 in some advisories). The root cause is a Regular Expression Denial of Service (ReDoS) in DecorationNode, StrongNode and ExternalLinkNode that can be triggered by crafted input, causing high CPU ...