Description
A ReDoS issue was discovered in the Time component through 0.2.1 in Ruby through 3.2.1. The Time parser mishandles invalid URLs that have specific characters. It causes an increase in execution time for parsing strings to Time objects. The fixed versions are 0.1.1 and 0.2.2.
Remediation
References
Related Vulnerabilities
Oracle JRE CVE-2018-2825 Vulnerability (CVE-2018-2825)
WordPress 5.4.x Multiple Vulnerabilities (5.4 - 5.4.8)
WordPress Plugin Yahoo! Updates for WordPress Multiple Cross-Site Scripting Vulnerabilities (1.0)
WordPress Plugin UpdraftPlus WordPress Backup Cross-Site Scripting (1.13.4)
WordPress 'wp-db.php' Character Set SQL Injection Vulnerability (2.0 - 2.3.1)