### [CVE-2021-3749](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3749)
![](https://img.shields.io/static/v1?label=Product&message=axios%2Faxios&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3C%3D%200.21.1%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-1333%20Inefficient%20Regular%20Expression%20Complexity&color=brighgreen)

### Description

axios is vulnerable to Inefficient Regular Expression Complexity

### POC

#### Reference
- https://huntr.dev/bounties/1e8f07fc-c384-4ff9-8498-0690de2e8c31
- https://www.oracle.com/security-alerts/cpujul2022.html

#### Github
- https://github.com/ARPSyndicate/cvemon
- https://github.com/MaySoMusician/geidai-ikoi
- https://github.com/NaInSec/CVE-PoC-in-GitHub
- https://github.com/SYRTI/POC_to_review
- https://github.com/T-Guerrero/axios-redos
- https://github.com/WhooAmii/POC_to_review
- https://github.com/broxus/ever-wallet-browser-extension
- https://github.com/broxus/ever-wallet-browser-extension-old
- https://github.com/cristianovisk/intel-toolkit
- https://github.com/k0mi-tg/CVE-POC
- https://github.com/manas3c/CVE-POC
- https://github.com/nomi-sec/PoC-in-GitHub
- https://github.com/rgstephens/node-red-contrib-graphql
- https://github.com/seal-community/patches
- https://github.com/trhacknon/Pocingit
- https://github.com/whoforget/CVE-POC
- https://github.com/youwizard/CVE-POC
- https://github.com/zecool/cve
- https://github.com/zvigrinberg/exhort-service-readiness-experiment