npm package
markdown-link-extractor
pkg:npm/markdown-link-extractor
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-43308 | — | < 3.0.2 | 3.0.2 | Jun 1, 2022 | An exponential ReDoS (Regular Expression Denial of Service) can be triggered in the markdown-link-extractor npm package, when an attacker is able to supply arbitrary input to the module's exported function |
- CVE-2021-43308Jun 1, 2022affected < 3.0.2fixed 3.0.2
An exponential ReDoS (Regular Expression Denial of Service) can be triggered in the markdown-link-extractor npm package, when an attacker is able to supply arbitrary input to the module's exported function