VYPR

Form Data

by Form Data

Source repositories

CVEs (2)

  • CVE-2025-7783CriJul 18, 2025
    risk 0.54cvss epss 0.02

    Use of Insufficiently Random Values vulnerability in form-data allows HTTP Parameter Pollution (HPP). This vulnerability is associated with program files lib/form_data.Js. This issue affects form-data: < 2.5.4, 3.0.0 - 3.0.3, 4.0.0 - 4.0.3.

  • CVE-2026-12143HigJun 12, 2026
    risk 0.42cvss 7.5epss 0.00

    form-data is a library for creating readable multipart/form-data streams. In versions through 4.0.5, the `field` argument to `FormData#append` and the `filename` option are concatenated verbatim into the `Content-Disposition` header without escaping carriage return (CR), line…