VYPR

npm package

tf2-item-format

pkg:npm/tf2-item-format

Vulnerabilities (1)

  • CVE-2024-41655HigJul 23, 2024
    affected >= 4.2.6, < 5.9.14fixed 5.9.14

    TF2 Item Format helps users format TF2 items to the community standards. Versions of `tf2-item-format` since at least `4.2.6` and prior to `5.9.14` are vulnerable to a Regular Expression Denial of Service (ReDoS) attack when parsing crafted user input. This vulnerability can be