The HTML-StripScripts module up to and including 1.06 for Perl allows _hss_attval_style ReDoS because of catastrophic backtracking for HTML content with certain style attributes.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
html-stripscripts project html-stripscripts |
||
debian debian linux 10.0 |