Releases204
Frequency2 weeks 16 hours
Last Release
JavaScript parser, mangler/compressor and beautifier toolkit for ES6+

CVE History

CVEAffectedPublishedCVSS v3CVSS v2
< 4.8.1, >= 5.0.0, < 5.14.25.3 MEDIUM

The package terser before 4.8.1, from 5.0.0 and before 5.14.2 are vulnerable to Regular Expression Denial of Service (ReDoS) due to insecure usage of regular expressions.