Description
Lodash versions prior to 4.17.21 are vulnerable to Regular Expression Denial of Service (ReDoS) via the toNumber, trim and trimEnd functions.
Remediation
References
Related Vulnerabilities
WordPress Plugin GiveWP-Donation and Fundraising Platform Cross-Site Scripting (2.23.2)
Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2016-3690)
WordPress Plugin MailPoet Newsletters (Previous) Security Bypass (2.8.1)
MongoDb Improper Encoding or Escaping of Output Vulnerability (CVE-2021-20333)