Security
Headlines

Headlines Latest CVEs

Headline

GHSA-2vrf-hf26-jrp5: angular vulnerable to regular expression denial of service via the angular.copy() utility

All versions of the package angular are vulnerable to Regular Expression Denial of Service (ReDoS) via the angular.copy() utility function due to the usage of an insecure regular expression. Exploiting this vulnerability is possible by a large carefully-crafted input, which can result in catastrophic backtracking.

1 year ago

#vulnerability #dos #git

angular vulnerable to regular expression denial of service via the angular.copy() utility

Moderate severity GitHub Reviewed Published Mar 30, 2023 to the GitHub Advisory Database • Updated Apr 3, 2023

Related news

All versions of the package angular are vulnerable to Regular Expression Denial of Service (ReDoS) via the angular.copy() utility function due to the usage of an insecure regular expression. Exploiting this vulnerability is possible by a large carefully-crafted input, which can result in catastrophic backtracking.

1 year ago

#vulnerability #dos

ghsa: Latest News

GHSA-hqmp-g7ph-x543: TunnelVision - decloaking VPNs using DHCP

16 hours ago

GHSA-j5vv-6wjg-cfr8: changedetection.io Vulnerable to Improper Input Validation Leading to LFR/Path Traversal

16 hours ago

GHSA-qx95-cwh6-9mvq: TCPDF missing character escape on error messages

1 day ago

GHSA-w95c-7994-ghpr: TCPDF has incorrect comparison

1 day ago

GHSA-9mgx-552f-59p6: TCPDF missing certificate validation

1 day ago