Lucene search
K

5 matches found

vulnersOsv
vulnersOsv
added 2026/03/25 9:3 p.m.7 views

@actinc/eslint-config (>=4.10.0 <=4.16.0), @alexgorbatchev/dotfiles (>=0.0.1 <=1.0.1) +298 more potentially affected by unknown CVE via smol-toml (>=1.1.2 <=1.6.0)

smol-toml NPM version =1.1.2, =4.10.0, =0.0.1, =2.8.0, =0.1.0-alpha.0, =0.2.2, =0.32.3, =0.2.2, =1.0.0, =0.1.3, =1.0.30, =0.2.0, =0.0.4, =0.0.4, =0.0.4, =9.0.0-canary.1784 and more Source cves: unknown CVE Source advisory: SNYK:JS-SMOLTOML-15768230...

5.5AI score
Exploits0
vulnersOsv
vulnersOsv
added 2026/03/25 9:3 p.m.7 views

@actinc/eslint-config (>=4.10.0 <=4.16.0), @alexgorbatchev/dotfiles (>=0.0.1 <=1.0.1) +298 more potentially affected by unknown CVE via smol-toml (>=1.1.2 <=1.6.0)

smol-toml NPM version =1.1.2, =4.10.0, =0.0.1, =2.8.0, =0.1.0-alpha.0, =0.2.2, =0.32.3, =0.2.2, =1.0.0, =0.1.3, =1.0.30, =0.2.0, =0.0.4, =0.0.4, =0.0.4, =9.0.0-canary.1784 and more Source cves: unknown CVE Source advisory: OSV:GHSA-V3RJ-XJV7-4JMQ...

5.5AI score
Exploits0
Snyk
Snyk
added 2026/03/25 9:3 p.m.8 views

Uncontrolled Recursion

Overview smol-toml is an A small, fast, and correct TOML parser/serializer Affected versions of this package are vulnerable to Uncontrolled Recursion. An attacker can cause the application to crash by submitting TOML documents containing thousands of consecutive commented lines, which triggers...

6.9CVSS6AI score
Exploits0References2
OSV
OSV
added 2024/11/22 8:40 p.m.1 views

GHSA-PQHP-25J4-6HQ9 smol-toml has a Denial of Service via malicious TOML document using deeply nested inline tables

Summary An attacker can send a maliciously crafted TOML to cause the parser to crash because of a stack overflow caused by a deeply nested inline structure. A similar problem occurs when attempting to stringify deeply nested objects. The library does not limit the maximum exploration depth while...

5.3CVSS6.1AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/11/22 12:0 a.m.2 views

PT-2024-40409 · Npm · Smol-Toml

Name of the Vulnerable Software and Affected Versions: smol-toml versions prior to 1.3.1 Description: The issue arises from the library's lack of limitation on the maximum exploration depth while parsing or producing TOML documents, allowing an attacker to cause a stack overflow by sending a...

5.3CVSS7.8AI score
Exploits0References4
Rows per page
Query Builder