validate.js icon indicating copy to clipboard operation
validate.js copied to clipboard
verified publisher icon ansman

Security Issue: Request for contact

Open pwntester opened this issue 5 years ago • 4 comments

Hello,

The GitHub Security Lab team has found a potential vulnerability in your project. Please create a Security Advisory and invite me in to further disclose and discuss the vulnerability details and potential fix. Alternatively, please add a Security Policy containing a security email address to send the details to.

Kind regards, A

pwntester avatar Nov 30 '20 14:11 pwntester

Hey @pwntester, did anyone respond to you?

MichalGorskiOnegini avatar May 19 '21 06:05 MichalGorskiOnegini

@MichalGorskiOnegini no one yet

pwntester avatar May 19 '21 07:05 pwntester

Thanks. I think the project is dead, unfortunately. What type of vulnerability is that? I'm about to use this in production code, but your comment made me worried.

MichalGorskiOnegini avatar May 19 '21 11:05 MichalGorskiOnegini

Sorry for the late response, this is a ReDOS vulnerability

pwntester avatar Jun 07 '21 08:06 pwntester