Description
All versions of package is-user-valid are vulnerable to LDAP Injection which can lead to either authentication bypass or information exposure.
Remediation
References
https://snyk.io/vuln/SNYK-JS-ISUSERVALID-1056766
Related Vulnerabilities
CVE-2020-7701 Vulnerability in npm package madlib-object-utils
CVE-2022-45146 Vulnerability in maven package org.bouncycastle:bc-fips-debug
CVE-2022-1330 Vulnerability in maven package org.webjars.bower:fullpage
CVE-2021-33611 Vulnerability in maven package org.webjars.bowergithub.vaadin:vaadin-menu-bar