all versions of url-regex are vulnerable to Regular Expression Denial of Service. An attacker providing a very long string in String.test can cause a Denial of Service.
7.5CVSS
7.3AI Score
0.001EPSS
All versions of package url-regex are vulnerable to Regular Expression Denial of Service (ReDoS) which can cause the CPU usage to crash.
7.5CVSS
7.5AI Score
0.001EPSS