Filtered by vendor Scss-tokenizer Project Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2022-25758 1 Scss-tokenizer Project 1 Scss-tokenizer 2024-11-21 5.3 Medium
All versions of package scss-tokenizer are vulnerable to Regular Expression Denial of Service (ReDoS) via the loadAnnotation() function, due to the usage of insecure regex.