88slot-ap (=1.0.0), @ndreckshage/tungstenjs (>=0.13.7 <=0.14.0) +225 more potentially affected by CVE-2017-16136 via method-override (>=2.0.0 <=2.3.1)

method-override NPM version =2.0.0, =0.13.7, =0.3.14, =0.0.7, =1.3.2-1, =0.2.0, =0.3.6, =0.1.0, =0.2.2, =0.2.0, =0.0.1, =0.1.1, =1.0.0, =1.0.2, =1.0.5 and more Source cves: CVE-2017-16136 Source advisory: OSV:GHSA-QX2F-477C-35RQ...

88slot-ap (=1.0.0), @ndreckshage/tungstenjs (>=0.13.7 <=0.14.0) +322 more potentially affected by CVE-2017-16136 via method-override (>=1.0.2 <=2.3.1)

method-override NPM version =1.0.2, =0.13.7, =0.3.14, =0.27.6, =0.0.7, =1.3.2-1, =0.2.0, =0.3.6, =1.2.0, =0.1.0, =0.0.3, =0.2.2, =0.2.0, =0.1.0, =0.0.1, =0.0.4 and more Source cves: CVE-2017-16136 Source advisory: OSV:GHSA-QX2F-477C-35RQ...

CVE-2017-16136

method-override is a module used by the Express.js framework to let you use HTTP verbs such as PUT or DELETE in places where the client doesn't support it. method-override is vulnerable to a regular expression denial of service vulnerability when specially crafted input is passed in to be parsed...