Regular Expression Denial of Service
All versions of package url-regex is vulnerable to Regular Expression Denial of Service (ReDoS) which can cause the CPU usage to crash.
Advisories for Npm/Url-Regex package
2022
2020
Uncontrolled Resource Consumption
url-regex is vulnerable to Regular Expression Denial of Service. An attacker providing a very long string in String.test can cause a Denial of Service.