CVE-2018-25077

high

Description

A vulnerability was found in melnaron mel-spintax. It has been rated as problematic. Affected by this issue is some unknown functionality of the file lib/spintax.js. The manipulation of the argument text leads to inefficient regular expression complexity. The name of the patch is 37767617846e27b87b63004e30216e8f919637d3. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-218456.

References

https://vuldb.com/?id.218456

https://vuldb.com/?ctiid.218456

https://github.com/melnaron/mel-spintax/commit/37767617846e27b87b63004e30216e8f919637d3

Details

Source: Mitre, NVD

Published: 2023-01-18

Updated: 2024-05-17

Risk Information

CVSS v2

Base Score: 2.3

Vector: CVSS2#AV:A/AC:M/Au:S/C:N/I:N/A:P

Severity: Low

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Severity: High