A vulnerability was found in melnaron mel-spintax. It has been rated as problematic. Affected by this issue is some unknown functionality of the file lib/spintax.js. The manipulation of the argument text leads to inefficient regular expression complexity. The name of the patch is 37767617846e27b87b63004e30216e8f919637d3. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-218456.
References
Link | Resource |
---|---|
https://github.com/melnaron/mel-spintax/commit/37767617846e27b87b63004e30216e8f919637d3 | Patch Third Party Advisory |
https://vuldb.com/?ctiid.218456 | Permissions Required Third Party Advisory |
https://vuldb.com/?id.218456 | Permissions Required Third Party Advisory |
Configurations
History
29 Feb 2024, 01:23
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
25 Jan 2023, 17:46
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://vuldb.com/?id.218456 - Permissions Required, Third Party Advisory | |
References | (MISC) https://vuldb.com/?ctiid.218456 - Permissions Required, Third Party Advisory | |
References | (MISC) https://github.com/melnaron/mel-spintax/commit/37767617846e27b87b63004e30216e8f919637d3 - Patch, Third Party Advisory | |
First Time |
Mel-spintax Project
Mel-spintax Project mel-spintax |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
CPE | cpe:2.3:a:mel-spintax_project:mel-spintax:*:*:*:*:*:*:*:* |
18 Jan 2023, 01:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-01-18 01:15
Updated : 2024-05-14 05:16
NVD link : CVE-2018-25077
Mitre link : CVE-2018-25077
CVE.ORG link : CVE-2018-25077
JSON object : View
Products Affected
mel-spintax_project
- mel-spintax
CWE