Unknown · Sanitize-Html · CVE-2022-25887
**Name of the Vulnerable Software and Affected Versions**
sanitize-html versions prior to 2.7.1
**Description**
The issue is related to Regular Expression Denial of Service (ReDoS) due to insecure global regular expression replacement logic of HTML comment removal.
**Recommendations**
For versions prior to 2.7.1, update to version 2.7.1 or later to resolve the issue.