Description
All versions of package mongo-express are vulnerable to Denial of Service (DoS) when exporting an empty collection as CSV, due to an unhandled exception, leading to a crash.
Remediation
References
https://snyk.io/vuln/SNYK-JS-MONGOEXPRESS-1085403
Related Vulnerabilities
CVE-2017-16078 Vulnerability in npm package shadowsock
CVE-2022-36091 Vulnerability in maven package org.xwiki.platform:xwiki-platform-web-templates
CVE-2022-40150 Vulnerability in maven package org.codehaus.jettison:jettison
CVE-2020-6461 Vulnerability in npm package electron
CVE-2020-14195 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind