Vulnerability Description
A vulnerability was found in Woorank robots-txt-guard. It has been rated as problematic. Affected by this issue is the function makePathPattern of the file lib/patterns.js. The manipulation of the argument pattern leads to inefficient regular expression complexity. The exploit has been disclosed to the public and may be used. The name of the patch is c03827cd2f9933619c23894ce7c98401ea824020. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-217448.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bridgeline | Robots-Txt-Guard | < 2021-02-07 |
Related Weaknesses (CWE)
References
- https://github.com/Woorank/robots-txt-guard/commit/c03827cd2f9933619c23894ce7c98PatchThird Party Advisory
- https://github.com/Woorank/robots-txt-guard/pull/4PatchThird Party Advisory
- https://vuldb.com/?ctiid.217448Permissions RequiredThird Party Advisory
- https://vuldb.com/?id.217448Third Party Advisory
- https://github.com/Woorank/robots-txt-guard/commit/c03827cd2f9933619c23894ce7c98PatchThird Party Advisory
- https://github.com/Woorank/robots-txt-guard/pull/4PatchThird Party Advisory
- https://vuldb.com/?ctiid.217448Permissions RequiredThird Party Advisory
- https://vuldb.com/?id.217448Third Party Advisory
FAQ
What is CVE-2021-4305?
CVE-2021-4305 is a vulnerability with a CVSS score of 3.5 (LOW). A vulnerability was found in Woorank robots-txt-guard. It has been rated as problematic. Affected by this issue is the function makePathPattern of the file lib/patterns.js. The manipulation of the arg...
How severe is CVE-2021-4305?
CVE-2021-4305 has been rated LOW with a CVSS base score of 3.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-4305?
Check the references section above for vendor advisories and patch information. Affected products include: Bridgeline Robots-Txt-Guard.