CVE-2026-33287 | harttle liquidjs up to 10.25.0 String.prototype.replace denial of service (GHSA-6q5m-63h6-5x4v)

Inserito da Angelo Barbosa | Mar 26, 2026 | CVE

A vulnerability marked as problematic has been reported in harttle liquidjs up to 10.25.0. Affected is the function String.prototype.replace. This manipulation causes denial of service.

The identification of this vulnerability is CVE-2026-33287. It is possible to initiate the attack remotely. There is no exploit available.

It is suggested to upgrade the affected component.

CVE-2026-33287 | harttle liquidjs up to 10.25.0 String.prototype.replace denial of service (GHSA-6q5m-63h6-5x4v)

Post correlati

CVE-2023-38297 | T-Mobile Device command injection

CVE-2025-1871 | Mayuri K 101news 1.0 add-subcategory.php subcategory sql injection

CVE-2024-6972 | Octopus Server prior 2024.1.12759/2024.2.9193 sensitive log file

CVE-2025-5482 | Sunshine Photo Cart Plugin up to 3.4.11 on WordPress password recovery