Description
Lodash versions prior to 4.17.21 are vulnerable to Regular Expression Denial of Service (ReDoS) via the toNumber, trim and trimEnd functions.
Remediation
References
Related Vulnerabilities
WebLogic CVE-2019-2827 Vulnerability (CVE-2019-2827)
XWiki Improper Encoding or Escaping of Output Vulnerability (CVE-2022-41934)
Oracle HTTP Server Other Vulnerability (CVE-2002-0659)
WordPress Plugin Chained Quiz SQL Injection (1.0.8)
WordPress Plugin HTML5 Video Player-Best WordPress Video Player and Block SQL Injection (2.5.24)