Vulnerabilities (CVE)

Filtered by vendor Url-regex Project Subscribe
Filtered by product Url-regex
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-21195 1 Url-regex Project 1 Url-regex 2024-11-21 5.0 MEDIUM 5.3 MEDIUM
All versions of package url-regex are vulnerable to Regular Expression Denial of Service (ReDoS) which can cause the CPU usage to crash.
CVE-2020-7661 1 Url-regex Project 1 Url-regex 2024-11-21 7.8 HIGH 7.5 HIGH
all versions of url-regex are vulnerable to Regular Expression Denial of Service. An attacker providing a very long string in String.test can cause a Denial of Service.