EPSS
Percentile
51.2%
simple-markdown is vulnerable to Regular Expression Denial Of Service (ReDoS). The vulnerability exists in simple-markdown.js because of insufficient regular expression complexity which allows an attacker to cause long parsing times.
simple-markdown.js
github.com/advisories/GHSA-gpvj-gp8c-c7p2
github.com/ariabuckles/simple-markdown/commit/89797fef9abb4cab2fb76a335968266a92588816
github.com/ariabuckles/simple-markdown/issues/71
github.com/ariabuckles/simple-markdown/releases/tag/0.5.2
vuldb.com/?ctiid.220639
vuldb.com/?id.220639