method-override is a module used by the Express.js framework to let you use HTTP verbs such as PUT or DELETE in places where the client doesn't support it. method-override is vulnerable to a regular expression denial of service vulnerability when specially crafted input is passed in to be parsed via the X-HTTP-Method-Override header.
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExpressjs Method Override
APPExpressjs< 2.3.10
Related vulnerabilities
Impact: multer versions 1.0.0 through 2.1.1 and 3.0.0-alpha.1 are vulnerable to a Denial of Service via deeply...
Multer is a node.js middleware for handling `multipart/form-data`. A vulnerability in Multer prior to version ...
Multer is a node.js middleware for handling `multipart/form-data`. A vulnerability in Multer prior to version ...
Multer is a node.js middleware for handling `multipart/form-data`. A vulnerability in Multer prior to version ...
basic-auth-connect is Connect's Basic Auth middleware in its own module. basic-auth-connect < 1.1.0 uses a tim...