CVE-2019-25102

Name of the Vulnerable Software and Affected Versions simple-markdown version 0.6.0

Description A problematic vulnerability was found in the simple-markdown software, affecting an unknown function of the file simple-markdown.js. The issue arises from inefficient regular expression complexity when the input <<<<<<<<:/:/:/:/:/:/:/:/:/:/ is manipulated. This can be exploited remotely. The exploit has been publicly disclosed and may be used.

Recommendations To address this issue, upgrade to version 0.6.1. As a temporary workaround, consider restricting the input to prevent inefficient regular expression complexity until the upgrade is applied.