AIKIDO-2026-11059
soupsieve is vulnerable to Regular Expression Denial of Service (ReDoS)
65
Medium Risk
This Affects:
soupsieveTL;DR
Affected versions of this package are vulnerable to regular expression denial of service in the CSS selector parser. The VALUE regex pattern used to match quoted attribute values in css_parser.py lacks proper termination guards and falls into exponential backtracking when given an unterminated quoted attribute selector such as [a="xxxx. An attacker who can influence the selector string passed to soupsieve.compile() or Beautiful Soup's .select() can hang the parser for several seconds with only a few hundred bytes of input, and CPU consumption grows exponentially per added character. The fix tightens the attribute-value regex so unterminated input no longer triggers exponential backtracking.
Who does this affect?
You are affected if you are using a version that falls within the vulnerable range.
Background info
soupsieve is vulnerable to Regular Expression Denial of Service (ReDoS) in versions 0.0.1 - 2.8.3.
How to fix this
Upgrade the soupsieve library to the patch version.
Are You Affected?
Connect your repositories to instantly see whether vulnerable or malicious packages exist in your codebase.
Free. No credit card required.
SOC 2Compliant
ISO 27001Compliant