Fixed ReDos vulnerability in prototypejs (#3003)

OpenMage · Feb 2, 2023 · bdc7d91 · bdc7d91
1 parent 8b91292
commit bdc7d91
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/js/prototype/prototype.js b/js/prototype/prototype.js
@@ -621,7 +621,7 @@ Object.extend(String.prototype, (function() {
   }
 
   function stripTags() {
-    return this.replace(/<\w+(\s+("[^"]*"|'[^']*'|[^>])+)?(\/)?>|<\/\w+>/gi, '');
+    return this.replace(/<\w+(\s+("[^"]*"|'[^']*'|[^>'"])+)?\s*("[^">]*|'[^'>])?(\/)?>|<\/\w+>/gi, '');
   }
 
   function stripScripts() {