fix: package.json & package-lock.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-COOKIE-8163060

package.json

@@ -25,8 +25,8 @@
     "app-root-path": "^3.0.0",
     "autoprefixer": "^10.3.4",
     "axios": "^1.6.8",
-    "cookie-parser": "^1.4.5",
-    "express": "^4.17.1",
+    "cookie-parser": "^1.4.7",
+    "express": "^4.21.1",
     "express-rate-limit": "^5.2.6",
     "hcaptcha": "^0.0.2",
     "helmet": "^4.6.0",
@@ -37,7 +37,7 @@
     "postcss-cli": "^8.3.1",
     "pug": "^3.0.2",
     "tailwind-hamburgers": "^1.1.1",
-    "tailwindcss": "^3.0.11",
+    "tailwindcss": "^2.2.15",
     "winston": "^3.3.3"
   },
   "devDependencies": {