223 matches found
02strich-markdown (>=1.0.0 <=1.0.2), 10secondsofcode-custom (=1.0.0) +11511 more potentially affected by CVE-2020-7753 via trim (=0.0.1)
trim NPM version =0.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on trim and may be impacted: - 02strich-markdown =1.0.0, =1.0.0, =0.0.2, =0.0.1, =4.11.0, =0.1.0, =0.0.2, =0.2.0, =1.0.16, =1.2.0, =1.2.2 and more Source cves: CVE-2020-7753 Source...
Regular Expression Denial of Service in trim
All versions of package trim lower than 0.0.3 are vulnerable to Regular Expression Denial of Service ReDoS via trim...
GHSA-W5P7-H5W8-2HFQ Regular Expression Denial of Service in trim
All versions of package trim lower than 0.0.3 are vulnerable to Regular Expression Denial of Service ReDoS via trim...
CVE-2020-28500
A flaw was found in nodejs-lodash. A Regular Expression Denial of Service ReDoS via the toNumber, trim and trimEnd functions is possible...
DEBIAN-CVE-2020-28500
Lodash versions prior to 4.17.21 are vulnerable to Regular Expression Denial of Service ReDoS via the toNumber, trim and trimEnd functions...
CVE-2020-28500
Lodash versions prior to 4.17.21 are vulnerable to Regular Expression Denial of Service ReDoS via the toNumber, trim and trimEnd functions...
CVE-2020-28500
Lodash versions prior to 4.17.21 are vulnerable to Regular Expression Denial of Service ReDoS via the toNumber, trim and trimEnd functions...
CVE-2020-28500
Lodash versions prior to 4.17.21 are vulnerable to Regular Expression Denial of Service ReDoS via the toNumber, trim and trimEnd functions...
Design/Logic Flaw
Lodash versions prior to 4.17.21 are vulnerable to Regular Expression Denial of Service ReDoS via the toNumber, trim and trimEnd functions...
UBUNTU-CVE-2020-28500
Lodash versions prior to 4.17.21 are vulnerable to Regular Expression Denial of Service ReDoS via the toNumber, trim and trimEnd functions...
CVE-2020-28500 Regular Expression Denial of Service (ReDoS)
Lodash versions prior to 4.17.21 are vulnerable to Regular Expression Denial of Service ReDoS via the toNumber, trim and trimEnd functions...
CVE-2020-28500
Lodash versions prior to 4.17.21 are vulnerable to Regular Expression Denial of Service ReDoS via the toNumber, trim and trimEnd functions...
Regular Expression Denial Of Service (ReDoS)
trim is vulnerable to regular expression denial of service ReDoS. An attacker can pass a malicious string input str via trim to cause a resource exhaustion and an application crash...
CVE-2020-7753
All versions of package trim are vulnerable to Regular Expression Denial of Service ReDoS via trim...
CVE-2020-7753
All versions of package trim are vulnerable to Regular Expression Denial of Service ReDoS via trim...
Design/Logic Flaw
All versions of package trim are vulnerable to Regular Expression Denial of Service ReDoS via trim...
CVE-2020-7753
CVE-2020-7753: The Connected IBM bulletin confirms that the trim package is vulnerable to Regular Expression Denial of Service (ReDoS) via trim() in all versions. It assigns a high base score (7.5) and references IBM X-Force data; however, the bulletin does not publicly specify a patched version ...
CVE-2020-7753 Regular Expression Denial of Service (ReDoS)
All versions of package trim are vulnerable to Regular Expression Denial of Service ReDoS via trim...
PT-2020-6965
Name of the Vulnerable Software and Affected Versions trim versions prior to 0.0.3 trim affected versions not specified, but all versions are mentioned as vulnerable in some sources Description The issue is related to the trim function in the trim package, which is vulnerable to Regular Expressio...
Regular Expression Denial of Service (ReDoS)
Overview lodash is a modern JavaScript utility library delivering modularity, performance, & extras. Affected versions of this package are vulnerable to Regular Expression Denial of Service ReDoS via the toNumber, trim and trimEnd functions. POC var lo = require'lodash'; function buildblank n var...