jsoneditor is vulnerable to regular expression denial of service. The use of inefficient regex pattern for trimmedValue
in getInnerText
function of util.js
allows a malicious user to crash the application by providing a malicious input.
CPE | Name | Operator | Version |
---|---|---|---|
jsoneditor | le | 9.5.5 | |
jsoneditor | le | 9.5.5 | |
jsoneditor | le | 9.5.3 | |
jsoneditor | le | 9.5.5 | |
jsoneditor | le | 9.5.5 | |
jsoneditor | le | 9.5.3 |