High severityNVD Advisory· Published Sep 17, 2021· Updated Aug 3, 2024
Inefficient Regular Expression Complexity in nervjs/taro
CVE-2021-3804
Description
taro is vulnerable to Inefficient Regular Expression Complexity
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
@tarojs/helpernpm | < 3.3.9 | 3.3.9 |
Affected products
2- nervjs/nervjs/tarov5Range: unspecified
Patches
Vulnerability mechanics
References
4- github.com/advisories/GHSA-468q-v4jj-485hghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2021-3804ghsaADVISORY
- github.com/nervjs/taro/commit/acadb6c826ba57f2030a626f1de4f7b4608fcdb5ghsax_refsource_MISCWEB
- huntr.dev/bounties/0ebe85e6-cc85-42b8-957e-18d8df277414ghsax_refsource_CONFIRMWEB
News mentions
0No linked articles in our index yet.