1. CVE-2024-45296: High-Severity Regex Denial-of-Service Flaw Found in path-to-regexp Library Used by Express.js
A high-severity vulnerability, tracked as CVE-2024-45296, has been identified in path-to-regexp version 0.1.7, a widely deployed npm library that converts Express-style path strings into regular expressions. The flaw enables attackers to trigger specially crafted path patterns that produce inefficient regex output, lea...