Description
lib/common/html_re.js in remarkable 1.7.1 allows Regular Expression Denial of Service (ReDoS) via a CDATA section.
Remediation
References
https://github.com/jonschlinkert/remarkable/issues/331
Related Vulnerabilities
CVE-2022-25936 Vulnerability in npm package servst
CVE-2018-3785 Vulnerability in npm package git-dummy-commit
CVE-2021-21321 Vulnerability in npm package fastify-reply-from
CVE-2022-35949 Vulnerability in maven package org.webjars.npm:undici
CVE-2023-49448 Vulnerability in maven package com.jfinal:jfinal