Regular Expression Backtracking Vulnerability in html-parse-stringify Package

CVE-2021-23346

This affects the package html-parse-stringify before 2.0.1; all versions of package html-parse-stringify2. Sending certain input could cause one of the regular expressions that is used for parsing to backtrack, freezing the process.

Learn more about our Web Application Penetration Testing UK.