CVE-2024-13926

Name of the Vulnerable Software and Affected Versions WP-Syntax WordPress plugin versions 1.2 and earlier

Description The issue arises from the plugin's improper handling of input, allowing an attacker to create a post with a large number of tags. This exploits a catastrophic backtracking issue in the regular expression processing, leading to a Denial of Service (DoS).

Recommendations For WP-Syntax WordPress plugin version 1.2 and earlier, update to a version that properly handles input to prevent the exploitation of the catastrophic backtracking issue in regular expression processing. At the moment, there is no information about a newer version that contains a fix for this vulnerability.