Description
All versions of package is-user-valid are vulnerable to LDAP Injection which can lead to either authentication bypass or information exposure.
Remediation
References
https://snyk.io/vuln/SNYK-JS-ISUSERVALID-1056766
Related Vulnerabilities
CVE-2022-3509 Vulnerability in maven package com.google.protobuf:protobuf-java
CVE-2019-5786 Vulnerability in npm package puppeteer
CVE-2021-23371 Vulnerability in npm package chrono-node
CVE-2021-43142 Vulnerability in maven package com.wutka:jox
CVE-2021-34371 Vulnerability in maven package org.neo4j:neo4j