| Titel | prettier <=3.6.2 Inefficient Regular Expression Complexity |
|---|
| Beschreibung | A potential Regular Expression Denial of Service (ReDoS) vulnerability has been identified in src/language-css/parser-postcss.js. The regular expression used to parse custom selectors can be exploited by a specially crafted input string, leading to catastrophic backtracking and causing the application to hang. |
|---|
| Quelle | ⚠️ https://github.com/prettier/prettier/issues/17737 |
|---|
| Benutzer | DayShift (UID 80963) |
|---|
| Einreichung | 17.07.2025 08:02 (vor 9 Monaten) |
|---|
| Moderieren | 26.07.2025 18:31 (9 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 317851 [prettier bis 3.6.2 parser-postcss.js parseNestedCSS node Denial of Service] |
|---|
| Punkte | 17 |
|---|