CVE-2022-31103
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2022-31103
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-31103.json
- Aliases
- Published
- 2022-06-27T23:15:08Z
- Modified
- 2023-11-29T09:41:18.182797Z
- Details
-
lettersanitizer is a DOM-based HTML email sanitizer for in-browser email rendering. All versions of lettersanitizer below 1.0.2 are affected by a denial of service issue when processing a CSS at-rule
@keyframes. This package is depended on by react-letter, therefore everyone using react-letter is also at risk. The problem has been patched in version 1.0.2. - References