1 results (0.018 seconds)
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-25103 – simple-markdown simple-markdown.js redos
https://notcve.org/view.php?id=CVE-2019-25103
A vulnerability has been found in simple-markdown 0.5.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file simple-markdown.js. The manipulation leads to inefficient regular expression complexity. The attack can be launched remotely. Upgrading to version 0.5.2 is able to address this issue. • https://github.com/ariabuckles/simple-markdown/commit/89797fef9abb4cab2fb76a335968266a92588816 https://github.com/ariabuckles/simple-markdown/releases/tag/0.5.2 https://vuldb.com/?ctiid.220639 https://vuldb.com/?id.220639 • CWE-1333: Inefficient Regular Expression Complexity •