An issue was discovered in the stripTags and unescapeHTML components in Prototype 1.7.3 where an attacker can cause a Regular Expression Denial of Service (ReDOS) through stripping crafted HTML tags.
{ "source": "CPE_STRING", "extracted_events": [ { "introduced": "1.7.3" }, { "last_affected": "1.7.3" } ], "cpe": "cpe:2.3:a:prototypejs:prototype:1.7.3:*:*:*:*:*:*:*" }
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-27511.json"