Vulnerability CVE-2023-26115


Published: 2023-06-22

Description:
All versions of the package word-wrap are vulnerable to Regular Expression Denial of Service (ReDoS) due to the usage of an insecure regular expression within the result variable.

 References:
https://security.snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-4058657
https://github.com/jonschlinkert/word-wrap/blob/master/index.js%23L39
https://security.snyk.io/vuln/SNYK-JS-WORDWRAP-3149973

Copyright 2026, cxsecurity.com

 

Back to Top