Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

npm audit vulnerability #36

Closed
alex737876 opened this issue Sep 24, 2022 · 2 comments
Closed

npm audit vulnerability #36

alex737876 opened this issue Sep 24, 2022 · 2 comments

Comments

@alex737876
Copy link

Running npm audit on a project using mail-listener2, gives following hint:
@alex737876
Copy link
Author

nodemailer <=6.6.0
Severity: critical
Header injection in nodemailer - GHSA-hwqf-gcqm-7353
Command injection in nodemailer - GHSA-48ww-j4fc-435p
No fix available
node_modules/nodemailer
mailparser 2.3.1 - 3.2.0
Depends on vulnerable versions of nodemailer
node_modules/mailparser
mail-listener5 *
Depends on vulnerable versions of mailparser
node_modules/mail-listener5

@MateMalice
Copy link
Owner

Fixed in v2.1.1.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@MateMalice @alex737876