Description
PCRE before 8.38 mishandles the interaction of lookbehind assertions and mutually recursive subpatterns, which allows remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP-RecentComments SQL Injection (2.0.7)
WordPress Plugin Telefication Server-Side Request Forgery (1.8.0)
Perl Improper Certificate Validation Vulnerability (CVE-2023-31486)
WordPress 5.8 Multiple Vulnerabilities (5.8)
WordPress Plugin Tutor LMS-eLearning and online course solution Cross-Site Request Forgery (1.5.2)