CVE-2024-45801 | cure53 DOMPurify up to 2.5.3/3.1.2 Nesting redos (GHSA-mmhx-hmjr-r674)

Posted by Angelo Barbosa | Sep 17, 2024 | CVE

A vulnerability was found in cure53 DOMPurify up to 2.5.3/3.1.2. It has been declared as critical. This vulnerability affects unknown code of the component Nesting Handler. The manipulation leads to inefficient regular expression complexity.

This vulnerability was named CVE-2024-45801. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-45801 | cure53 DOMPurify up to 2.5.3/3.1.2 Nesting redos (GHSA-mmhx-hmjr-r674)

Related Posts

CVE-2023-48387 | TAIWAN-CA JCICSecurityTool 4.2.3.32 cross site scripting

CVE-2024-4849 | Automatic Plugin up to 3.94.0 on WordPress autoplay cross site scripting

CVE-2023-6500 | Shariff Wrapper Plugin up to 4.6.9 on WordPress Shortcode cross site scripting

CVE-2023-51106 | MuPDF 1.23.4 load-pnm.c pnm_binary_read_image divide by zero