2 matches found
Regular Expression Denial Of Service (ReDoS)
jsx-slack is vulnerable to regular expression denial of service. The vulnerability exists due to the blockquote tags are not properly validated, allowing an attacker to cause an application crash...
jsx-slack 安全漏洞
jsx-slack builds JSON objects from JSX for the Slack block suite surface. A security vulnerability exists in jsx-slack, which stems from the fact that the CVE-2021-43838 patch is not sufficient to prevent regular expressions in the CNNVD-202112-2019 tag, then regular expressions used internally t...