CVE-2020-28469

glob-parent vulnerable to Regular Expression Denial of Service in enclosure regex

Description

This affects the package glob-parent before 5.1.2. The enclosure regex used to check for strings ending in enclosure containing path separator.

Patch Available

Fix available through Seal Security.  
No upgrade required, protect your application instantly.

Fix without upgrading

Score

Severity

Ecosystem

JavaScript

Publish Date

June 7, 2021

Modified Date

January 14, 2025

Score Vector

Affected Versions