VYPR

npm package

@fastify/multipart

pkg:npm/%40fastify/multipart

Vulnerabilities (2)

  • CVE-2025-24033HigJan 23, 2025
    affected < 8.3.1fixed 8.3.1

    @fastify/multipart is a Fastify plugin for parsing the multipart content-type. Prior to versions 8.3.1 and 9.0.3, the `saveRequestFiles` function does not delete the uploaded temporary files when user cancels the request. The issue is fixed in versions 8.3.1 and 9.0.3. As a worka

  • CVE-2023-25576Feb 14, 2023
    affected < 6.0.1fixed 6.0.1

    @fastify/multipart is a Fastify plugin to parse the multipart content-type. Prior to versions 7.4.1 and 6.0.1, @fastify/multipart may experience denial of service due to a number of situations in which an unlimited number of parts are accepted. This includes the multipart body pa