Vulnerabilities > Ssri Project
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-03-12 | CVE-2021-27290 | ssri 5.2.2-8.0.0, fixed in 8.0.1, processes SRIs using a regular expression which is vulnerable to a denial of service. | 7.5 |
2018-03-04 | CVE-2018-7651 | Resource Exhaustion vulnerability in Ssri Project Ssri index.js in the ssri module before 5.2.2 for Node.js is prone to a regular expression denial of service vulnerability in strict mode functionality via a long base64 hash string. | 5.9 |