| CVE-2026-4923 |
unknown |
— |
— |
|
|
|
2mo ago |
Impact: When using multiple wildcards, combined with at least one parameter, a regular expression can be generated that is vulnerable to ReDoS. This backtracking vulnerability requires the second wi… |
| CVE-2026-4926 |
unknown |
— |
— |
|
|
|
2mo ago |
Impact: A bad regular expression is generated any time you have multiple sequential optional groups (curly brace syntax), such as `{a}{b}{c}:z`. The generated regex grows exponentially with the numb… |
| CVE-2026-4867 |
unknown |
— |
— |
|
|
|
2mo ago |
Impact: A bad regular expression is generated any time you have three or more parameters within a single segment, separated by something that is not a period (.). For example, /:a-:b-:c or /:a-:b-:c… |
| CVE-2024-52798 |
unknown |
— |
— |
|
|
|
2y ago |
path-to-regexp turns path strings into a regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. The regular expression… |
| CVE-2024-45296 |
unknown |
— |
— |
|
|
|
2y ago |
Path-to-Regexp vulnerability |
