CVE-2023-31606

Published June 6th, 2023

View on NVD ↗

CVSS v3

7.5

HIGH

CVSS v2

N/A

Affected

PROJECTS

Description

A Regular Expression Denial of Service (ReDoS) issue was discovered in the sanitize_html function of redcloth gem v4.0.0. This vulnerability allows attackers to cause a Denial of Service (DoS) via supplying a crafted payload.

jgarber/redcloth

RedCloth is a Ruby library for converting Textile into HTML.

GitHub

445

merbinr/CVE-2023-31606

GitHub