Ikeda Soji

**Name of the Vulnerable Software and Affected Versions** HTML-StripScripts versions 1.06 and earlier **Description** The issue is related to the hss attval style function in the HTML-StripScripts module, which allows ReDoS (Regular expression Denial of Service) due to catastrophic backtracking when processing HTML content with certain style attributes. This can be exploited by a remote attacker to cause a denial of service. **Recommendations** For versions 1.06 and earlier, consider disabling the hss attval style function as a temporary workaround until a patch is available. Restrict access to HTML content with certain style attributes to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.