CVE-2021-29059

Published
View on NVD ↗
CVSS v3
7.5
HIGH
CVSS v2
5
MEDIUM
Affected
4
PROJECTS

Description

A vulnerability was discovered in IS-SVG version 2.1.0 to 4.2.2 and below where a Regular Expression Denial of Service (ReDOS) occurs if the application is provided and checks a crafted invalid SVG string.

is-svg
is-svg
Check if a string is SVG
NPMNPM
sindresorhus/is-svg
sindresorhus/is-svg
Check if a string or buffer is SVG
GitHubGitHub
144
yetingli/PoCs
yetingli/PoCs
A list of CVE's with Proof of Concepts
GitHubGitHub
11
yetingli/SaveResults
yetingli/SaveResults
GitHubGitHub