CVE-2016-10703
Published
CVSS v3
7.5
HIGH
CVSS v2
7.8
HIGH
Affected
1
PROJECT
Description
A regular expression Denial of Service (DoS) vulnerability in the file lib/ecstatic.js of the ecstatic npm package, before version 2.0.0, allows a remote attacker to overload and crash a server by passing a maliciously crafted string.
A static file server middleware that works with core http, express or on the CLI!
GitHub