Logo

The OpenJS Foundation's CVE Numbering Authority (CNA)

Security Advisories

Date CVE ID Advisory Project Title
2026-02-27 CVE-2026-2880 Advisory @fastify/middie @fastify/middie has an improper path normalization vulnerability
2026-02-27 CVE-2026-3304 Advisory multer Multer vulnerable to Denial of Service via incomplete cleanup
2026-02-27 CVE-2026-2359 Advisory multer multer vulnerable to Denial of Service via resource exhaustion
2026-01-21 CVE-2025-13465 Advisory lodash Prototype Pollution Vulnerability in Lodash `_.unset` and `_.omit` functions
2025-11-24 CVE-2025-13466 Advisory body-parser body-parser vulnerable to denial of service when url encoding is used
2025-07-17 CVE-2025-7339 Advisory on-headers on-headers vulnerable to http response header manipulation
2025-07-17 CVE-2025-7338 Advisory multer Multer vulnerable to Denial of Service via unhandled exception from malformed request