Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
es5-ext Regular Expression Denial of Service in `function#copy` and `function#toStringTokens`
Vulnerability Description
es5-ext contains ECMAScript 5 extensions. Passing functions with very long names or complex default argument names into `function#copy` or `function#toStringTokens` may cause the script to stall. The vulnerability is patched in v0.10.63.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N
Vulnerability Type
未加控制的资源消耗(资源穷尽)
Vulnerability Title
es5-ext 安全漏洞
Vulnerability Description
es5-ext是Mariusz Nowak个人开发者的一个 ECMAScript 扩展。 es5-ext v0.10.63之前版本存在安全漏洞,该漏洞源于使用具有很长名称或复杂默认参数名称的函数可能会导致脚本停止。
CVSS Information
N/A
Vulnerability Type
N/A