is-user-valid is vulnerable to Lightweight Directory Access Protocol (LDAP) Injection. The vulnerability exists due to an unsanitized validate
function when authenticating the email in the getEmail
function.
CPE | Name | Operator | Version |
---|---|---|---|
is-user-valid | le | 1.1.2 |