CVE-2020-27511

Published
View on NVD ↗
CVSS v3
7.5
HIGH
CVSS v2
5
MEDIUM
Affected
2
PROJECTS

Description

An issue was discovered in the stripTags and unescapeHTML components in Prototype 1.7.3 where an attacker can cause a Regular Expression Denial of Service (ReDOS) through stripping crafted HTML tags.

yetingli/PoCs
yetingli/PoCs
A list of CVE's with Proof of Concepts
GitHubGitHub
11
prototypejs/prototype
prototypejs/prototype
Prototype JavaScript framework
GitHubGitHub
3.54K