Vulnerabilities > Scss Tokenizer Project

DATE CVE VULNERABILITY TITLE RISK
2022-07-01 CVE-2022-25758 Unspecified vulnerability in Scss-Tokenizer Project Scss-Tokenizer
All versions of package scss-tokenizer are vulnerable to Regular Expression Denial of Service (ReDoS) via the loadAnnotation() function, due to the usage of insecure regex.
network
low complexity
scss-tokenizer-project
7.5