zkat/ssri

Releases23

Frequency3 weeks 2 days

Last Release almost 8 years ago

Stars83

Standard Subresource Integrity library for Node.js

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2018-7651 ↗	Mar 4, 2018Sunday, 4 March 2018, 01:29	—	4.3 MEDIUM
index.js in the ssri module before 5.2.2 for Node.js is prone to a regular expression denial of service vulnerability in strict mode functionality via a long base64 hash string.