0.001 Low
EPSS
Percentile
45.7%
tmpl is vulnerable to regular expression denial of service. An attacker is able to crash the application when formatting the crafted string through the tmpl functionality.
github.com/daaku/nodejs-tmpl/commit/4c654e4d1542f329ed561fd95ccd80f30c6872d6
huntr.dev/bounties/a07b547a-f457-41c9-9d89-ee48bee8a4df
huntr.dev/bounties/a07b547a-f457-41c9-9d89-ee48bee8a4df/