Information from GROWI, Inc.
Vulnerability ID:JVN#21624250
Title:Inefficient regular expressions in GROWI
Status:Vulnerable
This is a statement from the vendor itself with no modification by JPCERT/CC.
[Summary]
GROWI is developed by GROWI, Inc.
GROWI contains some bugs.
[Affected Products]
This bug affects GROWI All versions prior to v7.1.6
[Description]
GROWI releases prior to v7.1.6 contain denial of service (DOS) attacks.
[Impact]
Users who can create pages with this product may experience temporary or permanent suspension of the product's functionality.
[Solution]
Please upgrade your GROWI to v7.1.6 or later.
### Where to get the updated version
- [GitHub](https://github.com/weseek/growi)
- [Docker Hub](https://hub.docker.com/r/weseek/growi/)
