Количество 2
Количество 2
CVE-2026-25754
AdonisJS is a TypeScript-first web framework. Prior to versions 10.1.3 and 11.0.0-next.9, a prototype pollution vulnerability in AdonisJS multipart form-data parsing may allow a remote attacker to manipulate object prototypes at runtime. This issue has been patched in versions 10.1.3 and 11.0.0-next.9.
GHSA-f5x2-vj4h-vg4c
AdonisJS multipart body parsing has Prototype Pollution issue
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2026-25754 AdonisJS is a TypeScript-first web framework. Prior to versions 10.1.3 and 11.0.0-next.9, a prototype pollution vulnerability in AdonisJS multipart form-data parsing may allow a remote attacker to manipulate object prototypes at runtime. This issue has been patched in versions 10.1.3 and 11.0.0-next.9. | CVSS3: 7.2 | 0% Низкий | 2 дня назад |
| GHSA-f5x2-vj4h-vg4c AdonisJS multipart body parsing has Prototype Pollution issue | CVSS3: 7.2 | 0% Низкий | 2 дня назад |
Уязвимостей на страницу