Описание
An issue in the validate_email function in CTFd/utils/validators/init.py of CTFd 3.7.3 allows attackers to cause a Regular expression Denial of Service (ReDoS) via supplying a crafted string as e-mail address during registration.
EPSS
Процентиль: 19%
0.00061
Низкий
7.5 High
CVSS3
Дефекты
CWE-1333
Связанные уязвимости
CVSS3: 7.5
github
около 1 года назад
An issue in the validate_email function in CTFd/utils/validators/__init__.py of CTFd 3.7.3 allows attackers to cause a Regular expression Denial of Service (ReDoS) via supplying a crafted string as e-mail address during registration.
EPSS
Процентиль: 19%
0.00061
Низкий
7.5 High
CVSS3
Дефекты
CWE-1333