VYPR

Bleach

by Lumiverse

npm: bleach

CVEs (1)

  • CVE-2014-8881medSep 1, 2020
    risk 0.26cvss epss 0.02

    All versions of the `bleach` package are vulnerable to a regular expression denial of service attack when certain types of input are passed into the sanitize function. ## Recommendation The `bleach` package is not currently maintained, and has not seen an update since 2014. …