Search for packages
| purl | pkg:npm/ssri@5.2.4 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-w93e-wkm9-kuex
Aliases: CVE-2021-27290 GHSA-vx3p-948g-6vhq |
Regular Expression Denial of Service (ReDoS) npm `ssri` 5.2.2-6.0.1 and 7.0.0-8.0.0, processes SRIs using a regular expression which is vulnerable to a denial of service. Malicious SRIs could take an extremely long time to process, leading to denial of service. This issue only affects consumers using the strict option. |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-16T21:18:36.005381+00:00 | GitLab Importer | Affected by | VCID-w93e-wkm9-kuex | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/ssri/CVE-2021-27290.yml | 38.4.0 |
| 2026-04-11T22:30:50.255010+00:00 | GitLab Importer | Affected by | VCID-w93e-wkm9-kuex | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/ssri/CVE-2021-27290.yml | 38.3.0 |
| 2026-04-02T22:42:16.070689+00:00 | GitLab Importer | Affected by | VCID-w93e-wkm9-kuex | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/ssri/CVE-2021-27290.yml | 38.1.0 |
| 2026-04-01T16:59:54.260902+00:00 | GitLab Importer | Affected by | VCID-w93e-wkm9-kuex | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/ssri/CVE-2021-27290.yml | 38.0.0 |