0.001 Low
EPSS
Percentile
44.9%
method-override is vulnerable to regular expression denial of service (ReDoS) attacks. The vulnerability exists when parsing malicious X-HTTP-Method-Override header.
X-HTTP-Method-Override
github.com/expressjs/method-override/commit/4c58835a61fdf7a8e070d6f8ecd5379a961d0987
nodesecurity.io/advisories/538