adaltas/node-csv-parse

Releases113

Frequency3 weeks 2 days

Last Release about 5 years ago

Stars800

CSV parsing implementing the Node.js `stream.Transform` API

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2019-17592 ↗	Oct 14, 2019Monday, 14 October 2019, 20:15	7.5 HIGH	5 MEDIUM
The csv-parse module before 4.4.6 for Node.js is vulnerable to Regular Expression Denial of Service. The __isInt() function contains a malformed regular expression that processes large crafted input very slowly. This is triggered when using the cast option.