cve/CVE-2017-18077.md at 48a00929accbe24477052d164512463a2824377a

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-12-30 04:49:42 +00:00

0xMarcio 49bdc782b3 Update Sun May 26 14:27:04 CEST 2024

2024-05-26 14:27:05 +02:00

689 B

Raw Blame History

CVE-2017-18077

Description

index.js in brace-expansion before 1.1.7 is vulnerable to Regular Expression Denial of Service (ReDoS) attacks, as demonstrated by an expand argument containing many comma characters.

POC

Reference

No PoCs from references.

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/ossf-cve-benchmark/CVE-2017-18077

689 B Raw Blame History

CVE-2017-18077

Description

POC

Reference

Github

689 B

Raw Blame History