Regular Expression Denial Of Service (ReDoS)

sqlparse is vulnerable to Regular Expression Denial of Service ReDoS. The vulnerability exists due to inefficient regular expression complexity in the lexer.py regex element which allows an attacker to crash the application by submitting maliciously crafted input...

Regular Expression Denial Of Service (ReDoS)

Mako is vulnerable to regular expression denial of service. The vulnerability exists due to the insecure regex pattern used for the match attribute in the matchtagstart function of lexer.py, allowing an attacker to crash the application by providing a large number of tag quotes within its quoted...