EUVD-2018-0310

Malware in sbrugna...

GHSA-Q5C4-39F5-M68J Regular Expression Denial of Service in decamelize

Affected versions of decamelize are susceptible to a denial of service vulnerability when user input is passed directly into decamelize. Recommendation Update to version 1.1.2 or later...

react-icons (>=0.2.0 <=0.2.1) potentially affected by CVE-2017-16023 via decamelize (=1.1.1)

decamelize NPM version =1.1.1 is affected by a known vulnerability. The following packages have a transitive dependency on decamelize and may be impacted: - react-icons =0.2.0, =0.2.1 Source cves: CVE-2017-16023 Source advisory: OSV:GHSA-Q5C4-39F5-M68J...

Regular Expression Denial of Service in decamelize

Affected versions of decamelize are susceptible to a denial of service vulnerability when user input is passed directly into decamelize. Recommendation Update to version 1.1.2 or later...

Decamelize Denial of Service Vulnerability

Decamelize is a tool that converts camelized strings to lowercase using custom separators. A security vulnerability exists in Decamelize. An attacker could exploit this vulnerability to cause a denial of service...

CVE-2017-16023

Decamelize is used to convert a dash/dot/underscore/space separated string to camelCase. Decamelize 1.1.0 through 1.1.1 uses regular expressions to evaluate a string and takes unescaped separator values, which can be used to create a denial of service attack...

CVE-2017-16023

Decamelize is used to convert a dash/dot/underscore/space separated string to camelCase. Decamelize 1.1.0 through 1.1.1 uses regular expressions to evaluate a string and takes unescaped separator values, which can be used to create a denial of service attack...

Code injection

Decamelize is used to convert a dash/dot/underscore/space separated string to camelCase. Decamelize 1.1.0 through 1.1.1 uses regular expressions to evaluate a string and takes unescaped separator values, which can be used to create a denial of service attack...

CVE-2017-16023

Decamelize is used to convert a dash/dot/underscore/space separated string to camelCase. Decamelize 1.1.0 through 1.1.1 uses regular expressions to evaluate a string and takes unescaped separator values, which can be used to create a denial of service attack...

CVE-2017-16023

CVE-2017-16023 affects the decamelize library (versions 1.1.0–1.1.1). The root cause is the use of regular expressions to validate input containing unescaped separators (dash/dot/underscore/space) when converting to camelCase, which can be exploited to cause a denial of service. Relevant entries ...

CVE-2017-16023

Decamelize is used to convert a dash/dot/underscore/space separated string to camelCase. Decamelize 1.1.0 through 1.1.1 uses regular expressions to evaluate a string and takes unescaped separator values, which can be used to create a denial of service attack...

Regular Expression Denial Of Service (ReDoS)

decamelize is vulnerable to denial of service DoS attacks. These attacks are possible through the regular expression used to identify camel case names. If an attacker uses the | character, they are able to add to the regular expression and consume the CPU...

Regular Expression Denial of Service

Overview Affected versions of decamelize are susceptible to a denial of service vulnerability when user input is passed directly into decamelize. Recommendation Update to version 1.1.2 or later. References - Issue 5 - GitHub Advisory...