Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
GHSL-2020-296: Regular Expression Denial of Service (ReDoS) in Knwl.js
Vulnerability Description
Knwl.js is a Javascript library that parses through text for dates, times, phone numbers, emails, places, and more. Versions 1.0.2 and prior contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service (ReDoS). As of time of publication, no known patches are available.
CVSS Information
N/A
Vulnerability Type
CWE-1333
Vulnerability Title
Knwl.js 安全漏洞
Vulnerability Description
Knwl.js是Ben Moore个人开发者的一个 Javascript 库,通过文本解析日期、时间、电话号码、电子邮件、地点等。 Knwl.js 1.0.2版本及之前版本存在安全漏洞,该漏洞源于存在正则表达式拒绝服务漏洞。
CVSS Information
N/A
Vulnerability Type
N/A