Lucene search
Veracode Vulnerability DatabaseVERACODE:35845HistoryJun 03, 2022 - 5:29 a.m.
Regular Expression Denial Of Service (ReDoS)
2022-06-0305:29:49
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
13
regular expression denial of service
vulnerable software
insecure regex pattern
EPSS
0.001
Percentile
36.8%
markdown-link-extractor is vulnerable to regular expression denial of service. An attacker can crash the application by providing malicious input to the module.exports function of index.js due to the insecure regex pattern used for the image parameter.
Related
cnvd
cnvd
npm markdown-link-extractor denial-of-service vulnerability
2022-06-09 00:00:00
prion
prion
Design/Logic Flaw
2022-06-02 14:15:00
osv
osv
Regular expression denial of service in markdown-link-extractor
2022-06-03 00:01:00
CVE-2021-43308
2022-06-02 14:15:31
cvelist
cvelist
CVE-2021-43308 Exponential ReDoS in markdown-link-extractor
2022-06-01 16:47:49
github
github
Regular expression denial of service in markdown-link-extractor
2022-06-03 00:01:00
nvd
nvd
CVE-2021-43308
2022-06-02 14:15:31
cve
cve
CVE-2021-43308
2022-06-02 14:15:31