An issue exists in the stripTags and unescapeHTML components in Prototype 1.7.3 where an attacker can cause a Regular Expression Denial of Service (ReDOS) through stripping crafted HTML tags.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
prototypejs prototype 1.7.3 |