Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown

CVE-2022-21195

Disclosure Date: May 20, 2022 (last updated February 23, 2025)
All versions of package url-regex are vulnerable to Regular Expression Denial of Service (ReDoS) which can cause the CPU usage to crash.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2020-7661

Disclosure Date: June 04, 2020 (last updated February 21, 2025)
all versions of url-regex are vulnerable to Regular Expression Denial of Service. An attacker providing a very long string in String.test can cause a Denial of Service.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0