indexzero/TimeSpan.js

Releases4

Frequency9 months 2 weeks

Last Release over 12 years ago

Stars26

A JavaScript TimeSpan library for node.js (and soon the browser)

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2017-16115 ↗	Jun 7, 2018Thursday, 7 June 2018, 02:29	7.5 HIGH	5 MEDIUM
The timespan module is vulnerable to regular expression denial of service. Given 50k characters of untrusted user input it will block the event loop for around 10 seconds.