### [CVE-2017-18214](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18214)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

The moment module before 2.19.3 for Node.js is prone to a regular expression denial of service via a crafted date string, a different vulnerability than CVE-2016-4055.

### POC

#### Reference
- https://www.tenable.com/security/tns-2019-02

#### Github
- https://github.com/ARPSyndicate/cvemon
- https://github.com/KathiresanRamkumar95/fz-react-cli
- https://github.com/Steem-FOSSbot/steem-fossbot-voter
- https://github.com/Xtosea/Steemit-Bot2
- https://github.com/Xtosea/b
- https://github.com/engn33r/awesome-redos-security
- https://github.com/germanbot/votebot
- https://github.com/happy2btc/voting-bot-
- https://github.com/koolgal006/yehey.hive
- https://github.com/ktech7/SB7
- https://github.com/octane23/CASE-STUDY-1
- https://github.com/ossf-cve-benchmark/CVE-2017-18214
- https://github.com/sammo0401/voter
- https://github.com/veracitylife/wtm