Description
All versions of package mongo-express are vulnerable to Denial of Service (DoS) when exporting an empty collection as CSV, due to an unhandled exception, leading to a crash.
Remediation
References
https://snyk.io/vuln/SNYK-JS-MONGOEXPRESS-1085403
Related Vulnerabilities
CVE-2020-2131 Vulnerability in maven package org.jenkins-ci.plugins:harvest
CVE-2019-1003055 Vulnerability in maven package org.jvnet.hudson.plugins:ftppublisher
CVE-2022-25296 Vulnerability in npm package bodymen
CVE-2021-21366 Vulnerability in maven package org.webjars.npm:xmldom
CVE-2022-31160 Vulnerability in maven package org.webjars:jquery-ui