VYPR

npm package

path-parse

pkg:npm/path-parse

Vulnerabilities (1)

  • CVE-2021-23343May 4, 2021
    affected < 1.0.7fixed 1.0.7

    All versions of package path-parse are vulnerable to Regular Expression Denial of Service (ReDoS) via splitDeviceRe, splitTailRe, and splitPathRe regular expressions. ReDoS exhibits polynomial worst-case time complexity.