First published: Mon Jun 21 2021(Updated: )
An issue was discovered in the stripTags and unescapeHTML components in Prototype 1.7.3 where an attacker can cause a Regular Expression Denial of Service (ReDOS) through stripping crafted HTML tags.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Prototypejs Prototype | =1.7.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.