8.4 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
39.8%
All versions of the package word-wrap are vulnerable to Regular Expression Denial of Service (ReDoS) due to the usage of an insecure regular expression within the result variable.
github.com/jonschlinkert/word-wrap/blob/master/index.js%23L39
github.com/jonschlinkert/word-wrap/releases/tag/1.2.4
security.snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-4058657
security.snyk.io/vuln/SNYK-JS-WORDWRAP-3149973