robots-txt-guard is vulnerable to Regular Expression Denial of Service Attacks (ReDoS). The vulnerability exists via the pattern
parameter in the makePathPattern
function of patterns.js
due to insufficient regular expression complexity which allows an attacker to cause an application crash via a malicious input.
CPE | Name | Operator | Version |
---|---|---|---|
robots-txt-guard | le | 0.2.1 | |
robots-txt-guard | le | 0.2.1 |