Search Vulnerabilities

Sentry: Inefficient Regular Expression Complexity in sentry

Jun 24, 2026

CVE-2026-54268

Angular: Denial of Service (DoS) via OOM in Date Formatting (formatDate)

Jun 22, 2026

CVE-2025-71379

vllm - Regular Expression Denial of Service in Multiple Components

Jun 20, 2026

CVE-2026-49293

CPU exhaustion via O(n^2) BigInt construction on radix-prefixed integer literals

Jun 19, 2026

CVE-2026-45617

LiquidJS: ReDoS via Quadratic Backtracking in `strip_html` Filter Regex

Jun 17, 2026

CVE-2026-47138

Parse Server: Pre-authentication denial of service via client version header regex backtracking

Jun 12, 2026

CVE-2026-44496

Axios: Regular Expression Denial of Service (ReDoS) via Cookie Name Injection

Jun 11, 2026

CVE-2026-42567

Svelte: ReDoS in `<svelte:element>` Tag Validation

CVE-2026-41848

LOW

Spring Framework Denial of Service via AntPathMatcher

CVE-2026-52778

CRITICAL

YesWiki has Unsafe eval() in Formula Calculator - Remote Code Execution (RCE) & Denial of Service (DoS)

CVE-2026-11478

kokke tiny-regex-c Pattern re.c matchstar redos

CVE-2026-45409

Internationalized Domain Names in Applications (IDNA): Specially crafted inputs to idna.encode() can bypass CVE-2024-3651 fix

Jun 5, 2026

CVE-2026-10692

johnhuang316 code-index-mcp search_code_advanced is_safe_regex_pattern redos

CVE-2026-10691

wonderwhy-er DesktopCommanderMCP start_search search-manager.ts redos

CVE-2026-10291

Enderfga claw-orchestrator Session Grep Endpoint embedded-server.ts validateRegex redos

Jun 1, 2026

CVE-2026-44796

Nautobot: Object bulk rename UI actions vulnerable to denial of service by crafted regular expression (REDoS)

May 28, 2026

CVE-2026-9496

Versions of the package pacote from 11

May 26, 2026

CVE-2026-44425

ShellHub: Crash-DoS via field injection in filter and sort-by parameters

May 13, 2026

CVE-2026-8159

multiparty vulnerable to ReDoS via filename parsing

May 12, 2026

CVE-2026-33079

Mistune ReDoS in LINK_TITLE_RE allows denial of service with crafted Markdown titles

May 6, 2026

Showing 1 - 20 of 1,000+ results

...

Searching...

Filters

1,000+ results

CVE-2026-52794

Sentry: Inefficient Regular Expression Complexity in sentry

Jun 24, 2026

CVE-2026-54268

Angular: Denial of Service (DoS) via OOM in Date Formatting (formatDate)

Jun 22, 2026

CVE-2025-71379

vllm - Regular Expression Denial of Service in Multiple Components

Jun 20, 2026

CVE-2026-49293

CPU exhaustion via O(n^2) BigInt construction on radix-prefixed integer literals

Jun 19, 2026

CVE-2026-45617

LiquidJS: ReDoS via Quadratic Backtracking in `strip_html` Filter Regex

Jun 17, 2026

CVE-2026-47138

Parse Server: Pre-authentication denial of service via client version header regex backtracking

Jun 12, 2026

CVE-2026-44496

Axios: Regular Expression Denial of Service (ReDoS) via Cookie Name Injection

Jun 11, 2026

CVE-2026-42567

Svelte: ReDoS in `<svelte:element>` Tag Validation

CVE-2026-41848

LOW

Spring Framework Denial of Service via AntPathMatcher

CVE-2026-52778

CRITICAL

YesWiki has Unsafe eval() in Formula Calculator - Remote Code Execution (RCE) & Denial of Service (DoS)

CVE-2026-11478

kokke tiny-regex-c Pattern re.c matchstar redos

CVE-2026-45409

Internationalized Domain Names in Applications (IDNA): Specially crafted inputs to idna.encode() can bypass CVE-2024-3651 fix

Jun 5, 2026

CVE-2026-10692

johnhuang316 code-index-mcp search_code_advanced is_safe_regex_pattern redos

CVE-2026-10691

wonderwhy-er DesktopCommanderMCP start_search search-manager.ts redos

CVE-2026-10291

Enderfga claw-orchestrator Session Grep Endpoint embedded-server.ts validateRegex redos

Jun 1, 2026

CVE-2026-44796

Nautobot: Object bulk rename UI actions vulnerable to denial of service by crafted regular expression (REDoS)

May 28, 2026

CVE-2026-9496

Versions of the package pacote from 11

May 26, 2026

CVE-2026-44425

ShellHub: Crash-DoS via field injection in filter and sort-by parameters

May 13, 2026

CVE-2026-8159

multiparty vulnerable to ReDoS via filename parsing

May 12, 2026

CVE-2026-33079