CVE

CVE-2022-25758

CVE-2022-25758

All versions of package scss-tokenizer are vulnerable to Regular Expression Denial of Service (ReDoS) via the loadAnnotation() function, due to the usage of insecure regex.

Source: CVE-2022-25758

Exit mobile version