[MEDIUM] PocketMine MP vulnerable to uncontrolled resource consumption via mismatched type of 'InventoryTransactionPacket'

PKSA-3mjs-tbmc-n317 GHSA-42qm-8v8m-m78c

Affected package: pocketmine/pocketmine-mp

Affected version: <4.18.0-ALPHA2

Reported by:
GitHub