UNKNOWN npm
Denial-of-Service Extended Event Loop Blocking in qs
GHSA-f9cm-p3w6-xvr3 · CVE-2014-10064
Published · Modified
Description
Versions prior to 1.0.0 of qs are affected by a denial of service vulnerability that results from excessive recursion in parsing a deeply nested JSON string.
Recommendation
Update to version 1.0.0 or later
References
Ready to move
Start Securing
Free, no credit card | First findings in minutes