Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2026/01/14 8:22 p.m.6 views

CVE-2026-22809

tarteaucitron.js is a compliant and accessible cookie banner. Prior to 1.29.0, a Regular Expression Denial of Service ReDoS vulnerability was identified in tarteaucitron.js in the handling of the issuuid parameter. This vulnerability is fixed in 1.29.0...

4.4CVSS6.8AI score0.00107EPSS
Exploits0References1
Snyk
Snyk
added 2026/01/13 8:35 p.m.1 views

Regular Expression Denial of Service (ReDoS)

Overview tarteaucitronjs is a package that provides compliance to the European cookie law. Affected versions of this package are vulnerable to Regular Expression Denial of Service ReDoS via the issuuid parameter hangling. An attacker can cause excessive CPU consumption and degrade service...

6.7CVSS6.7AI score0.00107EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/01/13 8:35 p.m.10 views

tarteaucitron.js has Regular Expression Denial of Service (ReDoS) vulnerability

Summary A potential Regular Expression Denial of Service ReDoS vulnerability was identified in tarteaucitron.js in the handling of the issuuid parameter. Details The issue was caused by the use of insufficiently constrained regular expressions applied to attacker-controlled input: if...

4.4CVSS7AI score0.00107EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2026/01/13 8:35 p.m.2 views

GHSA-Q5F6-QXM2-MCQM tarteaucitron.js has Regular Expression Denial of Service (ReDoS) vulnerability

Summary A potential Regular Expression Denial of Service ReDoS vulnerability was identified in tarteaucitron.js in the handling of the issuuid parameter. Details The issue was caused by the use of insufficiently constrained regular expressions applied to attacker-controlled input: if...

4.4CVSS6.9AI score0.00107EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/01/13 7:36 p.m.23 views

CVE-2026-22809 tarteaucitron.js has Regular Expression Denial of Service (ReDoS) vulnerability

tarteaucitron.js is a compliant and accessible cookie banner. Prior to 1.29.0, a Regular Expression Denial of Service ReDoS vulnerability was identified in tarteaucitron.js in the handling of the issuuid parameter. This vulnerability is fixed in 1.29.0...

4.4CVSS0.00107EPSS
Exploits0References2
CVE
CVE
added 2026/01/13 7:36 p.m.18 views

CVE-2026-22809

tarteaucitron.js has a ReDoS vulnerability in the handling of the issuu_id parameter, fixed in version 1.29.0. Prior to 1.29.0, insufficiently constrained regex could cause excessive backtracking and CPU consumption. Upgrading to 1.29.0 or applying the mitigation described in public advisories is...

4.4CVSS6.4AI score0.00107EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/01/13 7:36 p.m.5 views

CVE-2026-22809 tarteaucitron.js has Regular Expression Denial of Service (ReDoS) vulnerability

tarteaucitron.js is a compliant and accessible cookie banner. Prior to 1.29.0, a Regular Expression Denial of Service ReDoS vulnerability was identified in tarteaucitron.js in the handling of the issuuid parameter. This vulnerability is fixed in 1.29.0...

4.4CVSS6.7AI score0.00107EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.5 views

PT-2026-2796

Name of the Vulnerable Software and Affected Versions tarteaucitron.js versions prior to 1.29.0 Description A Regular Expression Denial of Service ReDoS issue exists in tarteaucitron.js when handling the issuu id parameter. This could lead to a denial of service. Recommendations Update to version...

4.4CVSS6.5AI score0.00107EPSS
Exploits0References7
Rows per page
Query Builder