body-parser-xml@2.0.1 vulnerabilities

XML parser middleware for express.js.

Direct Vulnerabilities

Known vulnerabilities in the body-parser-xml package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • H
Prototype Pollution

body-parser-xml is a XML parser middleware for express.js.

Affected versions of this package are vulnerable to Prototype Pollution. The prototype of req.body can be polluted.

How to fix Prototype Pollution?

Upgrade body-parser-xml to version 2.0.3 or higher.

<2.0.3