Closed CodyTVWeber closed 3 weeks ago
An open ended regex can be used to attack a server by giving a regex an enormous complex string that can cause the regex checker to be overloaded. So the regexes used for the username, password, etc. should have a min and max size.
This should be a super easy quick fix.
An open ended regex can be used to attack a server by giving a regex an enormous complex string that can cause the regex checker to be overloaded. So the regexes used for the username, password, etc. should have a min and max size.