7.5 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
45.7%
nodejs-tmpl is simple string formatting. tmpl is vulnerable to Inefficient Regular Expression Complexity which may lead to resource exhaustion.
github.com/daaku/nodejs-tmpl
github.com/daaku/nodejs-tmpl/commit/4c654e4d1542f329ed561fd95ccd80f30c6872d6
huntr.dev/bounties/a07b547a-f457-41c9-9d89-ee48bee8a4df
nvd.nist.gov/vuln/detail/CVE-2021-3777