Description
Foundation is a front-end framework. Versions 6.3.3 and prior contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service (ReDoS). As of time of publication, it is unknown if any fixes are available.
Recommendation
No fix is available yet. Followings are affected versions:
- <= 6.3.3
References
Related Issues
- Knwl.js Regular Expression Denial of Service vulnerability - CVE-2020-26306
- useragent Regular Expression Denial of Service vulnerability - CVE-2020-26311
- CommonRegexJS Regular Expression Denial of Service vulnerability - CVE-2020-26305
- ua-parser-js Regular Expression Denial of Service vulnerability - CVE-2020-7793
- Tags:
- npm
- foundation-sites
Anything's wrong? Let us know Last updated on November 13, 2024