Lucene search
+L

17 matches found

euvd
euvd
added 2026/07/08 12:37 a.m.9 views

EUVD-2026-42127

String::Util versions before 1.36 for Perl are susceptible to a regular expression denial of service. The trim and rtrim functions stripped trailing whitespace with s/\s$//u. Because \s matches greedily and the $ anchor fails whenever a non-whitespace character follows the whitespace, the regex...

6AI score0.00392EPSS
Exploits0References4
nessus
nessus
added 2026/07/08 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2026-14895

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - String::Util versions before 1.36 for Perl are susceptible to a regular expression denial of service. The trim and rtrim functions stripped trailing whitespace...

7.5CVSS6.1AI score0.00392EPSS
Exploits0References3
osv
osv
added 2026/07/07 11:16 p.m.5 views

DEBIAN-CVE-2026-14895

String::Util versions before 1.36 for Perl are susceptible to a regular expression denial of service. The trim and rtrim functions stripped trailing whitespace with s/\s$//u. Because \s matches greedily and the $ anchor fails whenever a non-whitespace character follows the whitespace, the regex...

7.5CVSS6AI score0.00392EPSS
Exploits0References1
nvd
nvd
added 2026/07/07 11:16 p.m.10 views

CVE-2026-14895

String::Util versions before 1.36 for Perl are susceptible to a regular expression denial of service. The trim and rtrim functions stripped trailing whitespace with s/\s$//u. Because \s matches greedily and the $ anchor fails whenever a non-whitespace character follows the whitespace, the regex...

7.5CVSS0.00392EPSS
Exploits0References4
cvelist
cvelist
added 2026/07/07 10:12 p.m.26 views

CVE-2026-14895 String::Util versions before 1.36 for Perl are susceptible to a regular expression denial of service

String::Util versions before 1.36 for Perl are susceptible to a regular expression denial of service. The trim and rtrim functions stripped trailing whitespace with s/\s$//u. Because \s matches greedily and the $ anchor fails whenever a non-whitespace character follows the whitespace, the regex...

0.00392EPSS
Exploits0References3
debiancve
debiancve
added 2026/07/07 10:12 p.m.6 views

CVE-2026-14895

String::Util versions before 1.36 for Perl are susceptible to a regular expression denial of service. The trim and rtrim functions stripped trailing whitespace with s/\s$//u. Because \s matches greedily and the $ anchor fails whenever a non-whitespace character follows the whitespace, the regex...

7.5CVSS6AI score0.00392EPSS
Exploits0
attackerkb
attackerkb
added 2026/07/07 10:12 p.m.7 views

CVE-2026-14895

String::Util versions before 1.36 for Perl are susceptible to a regular expression denial of service. The trim and rtrim functions stripped trailing whitespace with s/\s$//u. Because \s matches greedily and the $ anchor fails whenever a non-whitespace character follows the whitespace, the regex...

6AI score0.00392EPSS
Exploits0References4
osv
osv
added 2026/07/07 10:12 p.m.8 views

CVE-2026-14895 String::Util versions before 1.36 for Perl are susceptible to a regular expression denial of service

String::Util versions before 1.36 for Perl are susceptible to a regular expression denial of service. The trim and rtrim functions stripped trailing whitespace with s/\s$//u. Because \s matches greedily and the $ anchor fails whenever a non-whitespace character follows the whitespace, the regex...

7.5CVSS6AI score0.00392EPSS
Exploits0References8
ptsecurity
ptsecurity
added 2026/07/07 12:0 a.m.10 views

PT-2026-56275

Name of the Vulnerable Software and Affected Versions String::Util versions prior to 1.36 Description String::Util for Perl is susceptible to a regular expression denial of service. The trim and rtrim functions use a regular expression to strip trailing whitespace. Because the s pattern matches...

6AI score0.00392EPSS
Exploits0References7
osv
osv
added 2026/05/19 8:53 a.m.9 views

BIT-MONGODB-2026-8202 Post-authentication CPU utilization DoS via $trim/$ltrim/$rtrim operators

Using a densely populated chars mask and a large input string in the MongoDB aggregation operators $trim, $ltrim, and $rtrim, an authenticated user with aggregation permissions can pin CPU utilization at 100% for an extended period of time. This issue impacts MongoDB Server v7.0 versions prior to...

6.5CVSS5.8AI score0.00263EPSS
Exploits0References2
susecve
susecve
added 2023/02/15 5:58 a.m.4 views

SUSE CVE-2010-2190

The 1 trim, 2 ltrim, 3 rtrim, and 4 substrreplace functions in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allow context-dependent attackers to obtain sensitive information memory contents by causing a userspace interruption of an internal function, related to the call time pass by reference...

5CVSS6.7AI score0.01896EPSS
Exploits1References5
osv
osv
added 2021/11/19 8:14 p.m.87 views

GHSA-XX4C-JJ58-R7X6 Inefficient Regular Expression Complexity in Validator.js

Impact Versions of validator prior to 13.7.0 are affected by an inefficient Regular Expression complexity when using the rtrim and trim sanitizers. Patches The problem has been patched in validator 13.7.0...

5.3CVSS8.3AI score0.01666EPSS
Exploits1References6
ptsecurity
ptsecurity
added 2021/11/02 12:0 a.m.3 views

PT-2021-21765 · Unknown · Validator.Js

Name of the Vulnerable Software and Affected Versions: validator.js versions prior to 13.7.0 Description: The issue is related to Inefficient Regular Expression Complexity. It affects the rtrim and trim sanitizers. There is no information provided about the estimated number of potentially affecte...

7.5CVSS5.9AI score0.01666EPSS
Exploits1References15
huntr
huntr
added 2021/09/21 8:41 a.m.37 views

Inefficient Regular Expression Complexity in validatorjs/validator.js

Description I would like to report a Regular Expression Denial of Service ReDoS vulnerability in validator. It allows cause a denial of service when calling function 'rtrim'. The ReDoS vulnerability is mainly due to the regex /\s+$/g and can be exploited with the following code. Proof of Concept ...

5CVSS2.2AI score0.01666EPSS
Exploits1
snyk
snyk
added 2021/04/05 12:43 p.m.4 views

Regular Expression Denial of Service (ReDoS)

Overview validator is a library of string validators and sanitizers. Affected versions of this package are vulnerable to Regular Expression Denial of Service ReDoS via the rtrim function. PoC var validator = require"validator" function buildattackn var ret = "" for var i = 0; i n; i++ ret += " "...

7.5CVSS8.7AI score0.01666EPSS
Exploits1References2
seebug
seebug
added 2011/04/28 12:0 a.m.30 views

PHP 5.2.x,5.3.x trim,ltrim,rtrim,substr_replace函数信息泄露漏洞

No description provided by source...

7.1AI score
Exploits0
cve
cve
added 2010/06/07 8:0 p.m.83 views

CVE-2010-2190

CVE-2010-2190 affects PHP 5.2.x (up to 5.2.13) and 5.3.x (up to 5.3.2). The vulnerability arises in the functions trim, ltrim, rtrim, and substr_replace, allowing a context-dependent attacker to obtain sensitive information (memory contents) by triggering an internal function interruption related...

5CVSS9AI score0.01896EPSS
Exploits1References6Affected Software1
Rows per page
Query Builder