Description
All versions of package trim-off-newlines are vulnerable to Regular Expression Denial of Service (ReDoS) via string processing.
Remediation
References
https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1567197
https://github.com/stevemao/trim-off-newlines/blob/master/index.js%23L6
https://snyk.io/vuln/SNYK-JS-TRIMOFFNEWLINES-1296850
Related Vulnerabilities
CVE-2022-41940 Vulnerability in maven package org.webjars.bower:engine.io
CVE-2023-38286 Vulnerability in maven package de.codecentric:spring-boot-admin-server
CVE-2021-21413 Vulnerability in npm package isolated-vm
CVE-2022-41714 Vulnerability in npm package fastest-json-copy
CVE-2021-3312 Vulnerability in maven package org.opencms:opencms-core