Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

GHSA-fjgf-rc76-4x9p

GitHub Security Advisory

Multer vulnerable to Denial of Service via unhandled exception from malformed request

✓ GitHub Reviewed HIGH Has CVE
View on GitHub

Advisory Details

### Impact

A vulnerability in Multer versions >= 1.4.4-lts.1, < 2.0.2 allows an attacker to trigger a Denial of Service (DoS) by sending a malformed request. This request causes an unhandled exception, leading to a crash of the process.

### Patches

Users should upgrade to `2.0.2`

### Workarounds

None

Affected Packages

npm multer
Affected versions: 1.4.4-lts.1 (fixed in 2.0.2)

Related CVEs

CVE-2025-7338

Key Information

GHSA ID
GHSA-fjgf-rc76-4x9p
Published
July 17, 2025 9:01 PM
Last Modified
July 17, 2025 9:01 PM
CVSS Score
7.5 /10
Primary Ecosystem
npm
Primary Package
multer
GitHub Reviewed
✓ Yes

Dataset

Last updated: July 26, 2025 6:37 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.