slug is a module to slugify strings, even if they contain unicode. slug is vulnerable to regular expression denial of service is specially crafted untrusted input is passed as input. About 50k characters can block the event loop for 2 seconds.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: hackerone
Published: 2018-06-07T02:00:00Z
Updated: 2024-09-17T01:16:46.857Z
Reserved: 2017-10-29T00:00:00
Link: CVE-2017-16117
Vulnrichment
No data.
NVD
Status : Modified
Published: 2018-06-07T02:29:02.910
Modified: 2019-10-09T23:24:47.783
Link: CVE-2017-16117
Redhat
No data.