The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.
ReDoS_in_RegExp issue exists @ profile.js in branch master
The application uses a dangerous regex pattern "/([0-9]+)+#/", at line 59 of /app/routes/profile.js, to search and compare user input with test, at line 61 of /app/routes/profile.js.
ReDoS_in_RegExp issue exists @ profile.js in branch master
The application uses a dangerous regex pattern "/([0-9]+)+#/", at line 59 of /app/routes/profile.js, to search and compare user input with test, at line 61 of /app/routes/profile.js.
Namespace: RobertMickleCx Repository: NodeGoat Repository Url: https://github.com/RobertMickleCx/NodeGoat CxAST-Project: RobertMickleCx/NodeGoat CxAST platform scan: e7941f4d-fb14-4e6e-9cdc-c12dbbe3cdc7 Branch: master Application: NodeGoat Severity: MEDIUM State: TO_VERIFY Status: RECURRENT CWE: 400 Lines: 59
References Read more