Security Advisories - PKSA-mdrw-7xfy-3575 - Packagist

PKSA-mdrw-7xfy-3575 Security Advisory

[HIGH] PocketMine-MP vulnerable to server crash with certain invalid JSON payloads in `LoginPacket` due to vulnerable dependency

PKSA-mdrw-7xfy-3575 GHSA-pqp3-8rrw-g8vm

Affected package: pocketmine/pocketmine-mp

Affected version: >=4.21.0,<4.21.1|<4.20.5

Reported by:
GitHub