Security
Headlines
HeadlinesLatestCVEs

Headline

GHSA-mx27-gg24-h2jc: ph-json vulnerable to stack exhaustion

An issue was discovered in ph-json that allows attackers to cause a denial of service or other unspecified impacts via crafted objects that have deeply nested structures.

ghsa
#dos#js#git

ph-json vulnerable to stack exhaustion

Low severity GitHub Reviewed Published Jun 14, 2023 to the GitHub Advisory Database • Updated Jun 14, 2023

Related news

CVE-2023-34612: Stack overflow error caused by ph-json parsing of untrusted JSON String · Issue #35 · phax/ph-commons

An issue was discovered ph-json thru 9.5.5 allows attackers to cause a denial of service or other unspecified impacts via crafted object that uses cyclic dependencies.