Url-Regex Project: Security Vulnerabilities
All versions of package url-regex are vulnerable to Regular Expression Denial of Service (ReDoS) which can cause the CPU usage to crash.
CVSS Score
5.3
EPSS Score
0.003
Published
2022-05-20
all versions of url-regex are vulnerable to Regular Expression Denial of Service. An attacker providing a very long string in String.test can cause a Denial of Service.
CVSS Score
7.5
EPSS Score
0.013
Published
2020-06-04