Vulnerabilities and security researches forwp-geshi-highlight wp-geshi-highlight

Apr 12, 2025

CVE, Research URL: CVE-2024-13896
Home page URL: Security reports for WP-GeSHi-Highlight — rock-solid syntax highlighting for 259 languages
Application: WP-GeSHi-Highlight — rock-solid syntax highlighting for 259 languages
Date: Apr 10, 2025
Research Description: The WP-GeSHi-Highlight — rock-solid syntax highlighting for 259 languages WordPress plugin through 1.4.3 processes user-supplied input as a regular expression via the wp_geshi_filter_replace_code() function, which could lead to Regular Expression Denial of Service (ReDoS) issue
Affected versions: Min -, max -.
Status: vulnerable