Regular Expression Denial of Servicemoment
Affected versions of
moment are vulnerable to a low severity regular expression denial of service when parsing dates as strings.
Update to version 2.19.3 or later.
Have content suggestions? Send them to [email protected]
publishedAdvisory publishedNov 27th, 2017
reportedInitial report by Cristian-Alexandru StaicuSep 21st, 2017