EPSS
Percentile
45.7%
semver-regex is vulnerable to regular expression denial of service. An attacker is able to crash the application by submitting a malicious string to the function semverRegex.
github.com/sindresorhus/semver-regex/commit/11c66245f4e1976dccc52977ed183696a21a3fd7
huntr.dev/bounties/006624e3-35ac-448f-aab9-7b5183f30e28