hjson-py icon indicating copy to clipboard operation
hjson-py copied to clipboard
verified publisher icon hjson

hjson-py vulnerable to denial of service

Open scacaca opened this issue 10 months ago • 0 comments

Description

An issue in hjson-python up to v3.0.2 allows attackers to cause a Denial of Service (DoS) via supplying a crafted JSON string to string a StringIndexOutOfBoundsException. There is a similar vulnerability The relevent code is in file1

Patch

The fix logic can be similar to this

scacaca avatar Mar 11 '25 14:03 scacaca