13 matches found
ROOT-APP-NPM-CVE-2022-37620 CVE-2022-37620 in @rootio/html-minifier - Patched by Root
Root has patched CVE-2022-37620 in the @rootio/html-minifier package for Root:npm. Multiple fixed versions available...
EUVD-2022-7144
Malicious code in bioql PyPI...
CVE-2022-37620
A Regular Expression Denial of Service ReDoS flaw was found in kangax html-minifier 4.0.0 because of the reCustomIgnore regular expression...
GHSA-PFQ8-RQ6V-VF5M kangax html-minifier REDoS vulnerability
A Regular Expression Denial of Service ReDoS flaw was found in kangax html-minifier 4.0.0 because of the reCustomIgnore regular expression...
kangax html-minifier REDoS vulnerability
A Regular Expression Denial of Service ReDoS flaw was found in kangax html-minifier 4.0.0 because of the reCustomIgnore regular expression...
01-dev (=1.0.0), 04-musicplayer (=1.0.0) +23497 more potentially affected by CVE-2022-37620 via html-minifier (>=0.4.5 <=4.0.0)
html-minifier NPM version =0.4.5, =4.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on html-minifier and may be impacted: - 01-dev =1.0.0 - 04-musicplayer =1.0.0 - 06demo-1 =1.0.0 - 0726react =0.1.1 - 0xgank-tea-advice-pull =1.0.0 -...
CVE-2022-37620
A Regular Expression Denial of Service ReDoS flaw was found in kangax html-minifier 4.0.0 because of the reCustomIgnore regular expression...
CVE-2022-37620
A Regular Expression Denial of Service ReDoS flaw was found in kangax html-minifier 4.0.0 because of the reCustomIgnore regular expression...
Hardcoded credentials
A Regular Expression Denial of Service ReDoS flaw was found in kangax html-minifier 4.0.0 via the candidate variable in htmlminifier.js...
CVE-2022-37620
A Regular Expression Denial of Service ReDoS flaw was found in kangax html-minifier 4.0.0 because of the reCustomIgnore regular expression...
CVE-2022-37620
CVE-2022-37620: ReDoS in kangax/html-minifier 4.0.0 due to reCustomIgnore regex. CVSS v3.1 base score 7.5 (HIGH); attack vector NETWORK, complexity LOW, no privileges required, no user interaction; impact: Availability loss. Remediation: upgrade/downgrade to a non-vulnerable/html-minifier version...
CVE-2022-37620
A Regular Expression Denial of Service ReDoS flaw was found in kangax html-minifier 4.0.0 because of the reCustomIgnore regular expression...
PT-2022-24031 · Unknown · Kangax Html-Minifier
Name of the Vulnerable Software and Affected Versions: kangax html-minifier version 4.0.0 Description: A Regular Expression Denial of Service ReDoS flaw was found in the candidate variable in htmlminifier.js. This issue can cause a denial of service. Recommendations: For kangax html-minifier...