Description
All versions of package trim-off-newlines are vulnerable to Regular Expression Denial of Service (ReDoS) via string processing.
Remediation
References
https://github.com/stevemao/trim-off-newlines/blob/master/index.js%23L6
https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1567197
https://snyk.io/vuln/SNYK-JS-TRIMOFFNEWLINES-1296850
Related Vulnerabilities
CVE-2020-7961 Vulnerability in maven package com.liferay.portal:com.liferay.portal.impl
CVE-2017-16171 Vulnerability in npm package hcbserver
CVE-2020-7730 Vulnerability in npm package bestzip
CVE-2021-38153 Vulnerability in maven package org.apache.kafka:kafka-clients
CVE-2022-24429 Vulnerability in npm package convert-svg-core