Lucene search
K

4 matches found

vulnersOsv
vulnersOsv
added 2026/03/04 6:27 p.m.13 views

org.webjars.npm:nestjs__platform-express (>=8.4.7 <=9.0.0-next.2) potentially affected by CVE-2026-3520 via org.webjars.npm:multer (=1.4.4-lts.1)

org.webjars.npm:multer MAVEN version =1.4.4-lts.1 is affected by a known vulnerability. The following packages have a transitive dependency on org.webjars.npm:multer and may be impacted: - org.webjars.npm:nestjsplatform-express =8.4.7, =9.0.0-next.2 Source cves: CVE-2026-3520 Source advisory:...

8.7CVSS5.8AI score0.00713EPSS
Exploits0
CNNVD
CNNVD
added 2025/07/17 12:0 a.m.3 views

Multer 安全漏洞

Multer is an expressjs open source middleware for Node.js. A security vulnerability exists in Multer versions 1.4.4-lts.1 through prior to 2.0.2, which stems from an unhandled exception in the handling of malformed multipart upload requests, which could lead to a denial of service...

7.5CVSS6AI score0.00644EPSS
Exploits0References3
CVE
CVE
added 2025/06/03 6:21 p.m.203 views

CVE-2025-48997

Summary of CVE-2025-48997 (Multer DoS) : Multer, a Node.js middleware for multipart/form-data, is vulnerable starting in version 1.4.4-lts.1 up to but not including 2.0.1. An attacker can trigger a Denial of Service by sending an upload request with an empty string field name, causing an unhandle...

8.7CVSS5.3AI score0.00368EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/06/03 12:0 a.m.4 views

Multer 安全漏洞

Multer is an expressjs open source middleware for Node.js. A security vulnerability exists in Multer versions 1.4.4-lts.1 through prior to 2.0.1, which stems from an upload file request with an empty string field name that could result in a denial of service...

8.7CVSS6AI score0.00368EPSS
Exploits0References5
Rows per page
Query Builder