Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-1333 — Vulnerability Class 258

258 vulnerabilities classified as CWE-1333. AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2026-41040 GROWI 安全漏洞 — GROWI 7.5AIHighAI2026-04-23
CVE-2026-40319 Giskard has a Regular Expression Denial of Service (ReDoS) in RegexMatching Check — giskard-oss 7.5AIHighAI2026-04-17
CVE-2026-5986 Zod jsVideoUrlParser util.js getTime redos — jsVideoUrlParser 5.3 Medium2026-04-09
CVE-2026-35041 ReDoS in fast-jwt when using RegExp in allowed* leading to CPU exhaustion during token verification — fast-jwt 4.2 Medium2026-04-09
CVE-2026-35611 Addressable has a Regular Expression Denial of Service in Addressable templates — addressable 7.5 High2026-04-07
CVE-2026-35458 Gotenberg has a ReDoS via extraHttpHeaders scope feature — gotenberg 6.5AIMediumAI2026-04-07
CVE-2026-35213 Regular Expression Denial of Service (ReDoS) in @hapi/content HTTP header parsing — content 7.5AIHighAI2026-04-06
CVE-2026-34939 PraisonAI: ReDoS via Unvalidated User-Controlled Regex in MCPToolIndex.search_tools() — PraisonAI 6.5 Medium2026-04-03
CVE-2026-33671 Picomatch has a ReDoS vulnerability via extglob quantifiers — picomatch 7.5 High2026-03-26
CVE-2026-0967 Libssh: libssh: denial of service via inefficient regular expression processing — Red Hat Enterprise Linux 10 7.5 -2026-03-26
CVE-2026-4923 path-to-regexp vulnerable to Regular Expression Denial of Service via multiple wildcards — path-to-regexp 5.9 Medium2026-03-26
CVE-2026-4867 path-to-regexp vulnerable to Regular Expression Denial of Service via multiple route parameters — path-to-regexp 7.5 High2026-03-26
CVE-2026-4539 pygments archetype.py AdlLexer redos — pygments 3.3 Low2026-03-22
CVE-2026-22178 OpenClaw < 2026.2.19 - ReDoS and Regex Injection via Unescaped Feishu Mention Metadata — OpenClaw 6.5 Medium2026-03-18
CVE-2026-28356 ReDoS in multipart 1.3.0 - `parse_options_header()` — multipart 7.5 High2026-03-12
CVE-2026-30837 Elysia has a string URL format redos — elysia 7.5 High2026-03-10
CVE-2026-30925 Parse Server affected by Regular Expression Denial of Service (ReDoS) via `$regex` query in LiveQuery — parse-server 7.5AIHighAI2026-03-09
CVE-2025-10990 Rexml: rexml: denial of service via inefficient regex parsing 7.5 High2026-02-27
CVE-2026-3293 snowflakedb snowflake-jdbc JDBC URL SdkProxyRoutePlanner.java SdkProxyRoutePlanner redos — snowflake-jdbc 3.3 Low2026-02-27
CVE-2026-26936 Inefficient Regular Expression Complexity in Kibana Leading to Denial of Service — Kibana 4.9 Medium2026-02-26
CVE-2026-27904 minimatch ReDoS: nested *() extglobs generate catastrophically backtracking regular expressions — minimatch 7.5 High2026-02-26
CVE-2026-1388 Inefficient Regular Expression Complexity in GitLab — GitLab 7.5 High2026-02-25
CVE-2026-26996 minimatch has a ReDoS via repeated wildcards with non-matching literal in pattern — minimatch 7.5 -2026-02-20
CVE-2026-2327 Markdown-It 安全漏洞 — markdown-it 5.3 Medium2026-02-12
CVE-2025-69873 Ajv JSON schema validator 安全漏洞 — ajv 2.9 Low2026-02-11
CVE-2026-26006 Redos (Regular Expression Denial of Service) at Code Extraction Block in significant-gravitas/autogpt — AutoGPT 6.5 Medium2026-02-10
CVE-2026-25547 Uncontrolled Resource Consumption in @isaacs/brace-expansion — brace-expansion 7.5AIHighAI2026-02-04
CVE-2026-23897 Apollo Server is vulnerable to denial of service with `startStandaloneServer` — apollo-server 7.5 High2026-02-04
CVE-2026-23956 seroval affected by Denial of Service via RegExp serialization — seroval 7.5 High2026-01-22
CVE-2026-22809 tarteaucitron.js has Regular Expression Denial of Service (ReDoS) vulnerability — tarteaucitron.js 4.4 Medium2026-01-13

Vulnerabilities classified as CWE-1333 represent 258 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.