CNNVD-202601-1984 Information

CNNVD ID

CNNVD-202601-1984

Related CVE

CVE-2026-22809

• CNNVD Published: 2026-01-13

Description (Chinese)

tarteaucitron.js是Amauri CHAMPEAUX个人开发者的一个 cookie 管理器。 tarteaucitron.js 1.29.0之前版本存在安全漏洞，该漏洞源于处理issuu_id参数时存在正则表达式拒绝服务。

Description (English)

Tarteaucitron.js is a cookie manager for Amauri CHAMPEAUX personal developer. There was a security loophole in the pre-set version of trateaucitron.js 1.29.0, which originated from the formal expression of denial of service when processing the questionuu id parameters.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2026-01-13

Last Modified

2026-02-24

References

https://github.com/AmauriC/tarteaucitron.js/security/advisories/GHSA-q5f6-qxm2-mcqm https://github.com/AmauriC/tarteaucitron.js/commit/f0bbdac2fdf3cd24a325fc0928c0d34abf1b7b52 https://access.redhat.com/security/cve/cve-2026-22809

Patch

https://tarteaucitron.io/en/