index.js in brace-expansion prior to 1.1.7 is vulnerable to Regular Expression Denial of Service (ReDoS) attacks, as demonstrated by an expand argument containing many comma characters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
brace expansion project brace expansion |