naivechain icon indicating copy to clipboard operation
naivechain copied to clipboard
verified publisher icon lhartikk

Regular Expression Denial of Service (DoS)

Open larrycameron80 opened this issue 6 years ago • 0 comments

Regular Expression Denial of Service (DoS) Vulnerable module: negotiator Introduced through: [email protected] Detailed paths Introduced through: naivechain@lhartikk/naivechain#dfd2481e7158f72e54fba4ce0bd2f48d0a44945e › [email protected][email protected][email protected] Remediation: Upgrade to [email protected]. Overview negotiator is an HTTP content negotiator for Node.js.

Affected versions of this package are vulnerable to Regular Expression Denial of Service (DoS) when parsing Accept-Language http header.

larrycameron80 avatar Sep 17 '19 02:09 larrycameron80