VYPR

npm package

markdown-link-extractor

pkg:npm/markdown-link-extractor

Vulnerabilities (1)

  • CVE-2021-43308Jun 1, 2022
    affected < 3.0.2fixed 3.0.2

    An exponential ReDoS (Regular Expression Denial of Service) can be triggered in the markdown-link-extractor npm package, when an attacker is able to supply arbitrary input to the module's exported function