CVE-2025-66020 | open-circle valibot up to 1.1.x String EMOJI_REGEX redos (GHSA-vqpr-j7v3-hqw9)

A vulnerability was found in open-circle valibot up to 1.1.x. It has been rated as problematic. This issue affects the function EMOJI_REGEX of the component String Handler. The manipulation leads to inefficient regular expression complexity.

This vulnerability is uniquely identified as CVE-2025-66020. The attack is possible to be carried out remotely. No exploit exists.

Upgrading the affected component is advised.VulDB Recent EntriesRead More