Description
A ReDoS (regular expression denial of service) flaw was found in the @progfay/scrapbox-parser package before 6.0.3 for Node.js.
Remediation
References
https://github.com/progfay/scrapbox-parser/pull/519
https://github.com/progfay/scrapbox-parser/pull/539
https://github.com/progfay/scrapbox-parser/pull/540
https://security.netapp.com/advisory/ntap-20210326-0002/
Related Vulnerabilities
CVE-2020-26289 Vulnerability in maven package org.webjars.npm:date-and-time
CVE-2020-12265 Vulnerability in npm package decompress-tar
CVE-2020-7743 Vulnerability in maven package org.webjars.bower:mathjs
CVE-2018-14042 Vulnerability in maven package org.webjars.bower:bootstrap
CVE-2021-23346 Vulnerability in maven package org.webjars.npm:html-parse-stringify2