Description
All versions of package mongo-express are vulnerable to Denial of Service (DoS) when exporting an empty collection as CSV, due to an unhandled exception, leading to a crash.
Remediation
References
https://snyk.io/vuln/SNYK-JS-MONGOEXPRESS-1085403
Related Vulnerabilities
CVE-2018-16491 Vulnerability in npm package node.extend
CVE-2020-2244 Vulnerability in maven package org.jenkins-ci.plugins:build-failure-analyzer
CVE-2017-18077 Vulnerability in npm package brace-expansion
CVE-2017-2608 Vulnerability in maven package org.jenkins-ci.main:jenkins-core
CVE-2023-37263 Vulnerability in npm package @strapi/plugin-content-manager