marked npm module heading ReDenial...

- AV AC AU C I A
发布: 2024-08-31
修订: 2024-12-11

This Metasploit module exploits a Regular Expression Denial of Service vulnerability in the npm module "marked". The vulnerable portion of code that this module targets is in the "heading" regular expression. Web applications that use "marked" for generating html from markdown are vulnerable. Versions up to 0.4.0 are vulnerable.

0%
当前有1条漏洞利用/PoC
当前有0条受影响产品信息