RSS   Vulnerabilities for 'Marked'   RSS

2017-12-07
 
CVE-2017-17461

CWE-20
 

 
A Regular expression Denial of Service (ReDoS) vulnerability in the file marked.js of the marked npm package (tested on version 0.3.7) allows a remote attacker to overload and crash a server by passing a maliciously crafted string.

 

 >>> Vendor: Npmjs 5 Products
Node packaged modules
Marked
NPM
Npm-user-validate
Hosted-git-info


Copyright 2024, cxsecurity.com

 

Back to Top