Description
The package ua-parser-js before 0.7.23 are vulnerable to Regular Expression Denial of Service (ReDoS) in multiple regexes (see linked commit for more info).
Remediation
References
Related Vulnerabilities
WordPress Plugin Easy Accordion-Best Accordion FAQ Cross-Site Scripting (2.0.21)
WordPress Plugin PostmagThemes Demo Import Arbitrary File Upload (1.0.7)
WordPress Plugin Google Drive for WordPress Information Disclosure (2.2)
Django Uncontrolled Resource Consumption Vulnerability (CVE-2019-14233)
WordPress Plugin Tutor LMS-eLearning and online course solution Cross-Site Scripting (1.9.11)