EUVD-2024-2870

Malicious code in bioql PyPI...

CVE-2020-36830

A vulnerability was found in nescalante urlregex up to 0.5.0 and classified as problematic. This issue affects some unknown processing of the file index.js of the component Backtracking. The manipulation leads to inefficient regular expression complexity. The attack may be initiated remotely. The...

Regular Expression Denial Of Service (ReDoS)

urlregex is vulnerable to Regular Expression Denial Of Service ReDoS. The vulnerability is due to inefficient handling of regular expressions in the index.js file of the Backtracking component in nescalante urlregex, allowing an attacker to induce performance degradation or resource exhaustion...

ReDoS in urlregex

A vulnerability was found in nescalante urlregex up to 0.5.0 and classified as problematic. This issue affects some unknown processing of the file index.js of the component Backtracking. The manipulation leads to inefficient regular expression complexity. The attack may be initiated remotely. The...

GHSA-RW72-V6C7-HF9R ReDoS in urlregex

A vulnerability was found in nescalante urlregex up to 0.5.0 and classified as problematic. This issue affects some unknown processing of the file index.js of the component Backtracking. The manipulation leads to inefficient regular expression complexity. The attack may be initiated remotely. The...

CVE-2020-36830

A vulnerability was found in nescalante urlregex up to 0.5.0 and classified as problematic. This issue affects some unknown processing of the file index.js of the component Backtracking. The manipulation leads to inefficient regular expression complexity. The attack may be initiated remotely. The...

CVE-2020-36830

A vulnerability was found in nescalante urlregex up to 0.5.0 and classified as problematic. This issue affects some unknown processing of the file index.js of the component Backtracking. The manipulation leads to inefficient regular expression complexity. The attack may be initiated remotely. The...

CVE-2020-36830

The CVE-2020-36830 entry concerns the nescalante urlregex project (Backtracking component, index.js) with a Regular Expression Denial of Service (ReDoS) risk due to inefficient backtracking in the 0.5.0 release. Exploitation is reported to be remote, and public disclosure is noted across sources....

CVE-2020-36830 nescalante urlregex Backtracking index.js redos

A vulnerability was found in nescalante urlregex up to 0.5.0 and classified as problematic. This issue affects some unknown processing of the file index.js of the component Backtracking. The manipulation leads to inefficient regular expression complexity. The attack may be initiated remotely. The...

CVE-2020-36830 nescalante urlregex Backtracking index.js redos

A vulnerability was found in nescalante urlregex up to 0.5.0 and classified as problematic. This issue affects some unknown processing of the file index.js of the component Backtracking. The manipulation leads to inefficient regular expression complexity. The attack may be initiated remotely. The...

urlregex 安全漏洞

urlregex is a node and browser URL validation by Nicolas Escalante Personal Developer. A security vulnerability exists in urlregex version 0.5.0 and prior versions, which stems from the fact that performing an incorrect operation can lead to low regular expression complexity...

PT-2024-10840 · Nescalante · Url-Regex

Name of the Vulnerable Software and Affected Versions: nescalante urlregex versions up to 0.5.0 Description: A vulnerability was found in the nescalante urlregex component, affecting some unknown processing of the file index.js of the Backtracking component. The manipulation leads to inefficient...

Regular Expression Denial of Service (ReDoS)

Overview urlregex is a no-dependency URL validation for Node and the browser. Affected versions of this package are vulnerable to Regular Expression Denial of Service ReDoS. An attacker providing a very long string in String.test can cause a Denial of Service. PoC by Nick Baugh For url-regex...