← Back to CVE List

CVE-2022-25887

Published: 2022-08-30T05:15Z
Last Modified: 2024-11-21T06:53Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
The package sanitize-html before 2.7.1 are vulnerable to Regular Expression Denial of Service (ReDoS) due to insecure global regular expression replacement logic of HTML comment removal. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt