CVE-2025-27220 Information

Description

In the CGI gem before 0.4.2 for Ruby a Regular Expression Denial of Service (ReDoS) vulnerability exists in the UtilescapeElement method.

Reference

https://github.com/rubysec/ruby-advisory-db/blob/master/gems/cgi/CVE-2025-27220.yml https://hackerone.com/reports/2890322