Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com
☎ 03 60 47 09 81 - info@securiteinfo.com
A Regular Expression Denial of Service (ReDoS) issue was discovered in the sanitize_html function of redcloth gem v4.0.0. This vulnerability allows attackers to cause a Denial of Service (DoS) via supplying a crafted payload.
No PoCs from references.
- https://github.com/e23e/CVE-2023-31606
- https://github.com/merbinr/CVE-2023-31606
- https://github.com/nomi-sec/PoC-in-GitHub