Inefficient Regular Expression Complexity in nltk (word_tokenize, sent_tokenize)
Impact The vulnerability is present in PunktSentenceTokenizer, senttokenize and wordtokenize. Any users of this class, or these two functions, are vulnerable to a Regular Expression Denial of Service ReDoS attack. In short, a specifically crafted long input to any of these vulnerable functions wi...