@angie061099/md-links (=0.2.0), @boillodmanuel/markdown-link-check (>=4.0.1 <=4.7.0) +75 more potentially affected by CVE-2021-43308 via markdown-link-extractor (>=1.3.1 <=2.0.1)

markdown-link-extractor NPM version =1.3.1, =4.0.1, =0.0.2, =1.0.30001255, =1.0.0, =1.0.0, =0.0.33, =0.0.0, =0.1.11, =0.0.3, =0.1.0, =0.1.0, =1.1.0, =1.0.0, =1.1.0 and more Source cves: CVE-2021-43308 Source advisory: OSV:GHSA-MMH6-M7V9-5956...

PT-2022-11820 · Npm · Markdown-Link-Extractor

Name of the Vulnerable Software and Affected Versions: markdown-link-extractor npm package affected versions not specified Description: The issue is related to an exponential ReDoS Regular Expression Denial of Service that can be triggered when an attacker supplies arbitrary input to the module's...