2 matches found
GHSA-QG5X-66HP-CW5P Uncontrolled Resource Consumption in Apache DolphinScheduler
Apache DolphinScheduler user registration is vulnerable to Regular express Denial of Service ReDoS attacks. Apache DolphinScheduler users should upgrade to version 2.0.5 or higher...
Regular Express Denial Of Service (ReDoS)
is-my-json-valid is vulnerable to regular expression denial of service ReDoS. The vulnerability exists as it does not impose a max length on the string to be tested against the regular expression, and uses a regular expression that evaluates strings at exponential times...