RSS   Vulnerabilities for 'Date-and-time'   RSS

2020-12-28
 
CVE-2020-26289

CWE-400
 

 
date-and-time is an npm package for manipulating date and time. In date-and-time before version 0.14.2, there a regular expression involved in parsing which can be exploited to to cause a denial of service. This is fixed in version 0.14.2.

 


Copyright 2024, cxsecurity.com

 

Back to Top