CVE-2026-11478 | kokke tiny-regex-c up to f2632c6d9ed25272987471cdb8b70395c2460bdb Pattern re.c matchstar redos (Issue 100)

A vulnerability, which was classified as problematic, has been found in kokke tiny-regex-c up to f2632c6d9ed25272987471cdb8b70395c2460bdb. This vulnerability affects the function matchstar of the file re.c of the component Pattern Handler. This manipulation causes inefficient regular expression complexity.

This vulnerability is tracked as CVE-2026-11478. The attack is restricted to local execution. Moreover, an exploit is present.

This product adopts a rolling release strategy to maintain continuous delivery. Therefore, version details for affected or updated releases cannot be specified.

The project was informed of the problem early through an issue report but has not responded yet.

CVE-2026-11478 | kokke tiny-regex-c up to f2632c6d9ed25272987471cdb8b70395c2460bdb Pattern re.c matchstar redos (Issue 100)

Post correlati

CVE-2024-56199 | thorsten phpMyFAQ up to 4.0.1 FAQ Editor index.php?action=editentry cross site scripting

CVE-2024-13466 | atakanau Automatically Hierarchic Categories in Menu Plugin Shortcode autocategorymenu cross site scripting

CVE-2024-45983 | kishan0725 Hospital Management System 6.3.5 cross-site request forgery

CVE-2024-35767 | Bogdan Bendziukov Squeeze Plugin up to 1.4 on WordPress unrestricted upload