CVE-2026-25754 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

AdonisJS is a TypeScript-first web framework. Prior to versions 10.1.3 and 11.0.0-next.9, a prototype pollution vulnerability in AdonisJS multipart form-data pa…
High CVSS: 7.2

CVE-2026-25754

AdonisJS is a TypeScript-first web framework. Prior to versions 10.1.3 and 11.0.0-next.9, a prototype pollution vulnerability in AdonisJS multipart form-data parsing may allow a remote attacker to manipulate object prototypes at runtime. This issue has been patched in versions 10.1.3 and 11.0.0-next.9.
Vendor
Adonisjs
Product
Bodyparser
CWE
CWE-1321
Yayın Tarihi
2026-02-06 23:15:54
Güncelleme
2026-03-17 20:42:28
Source Identifier
security-advisories@github.com
KEV Date Added
-

Kategoriler

CWE-1321 Bodyparser HIGH Adonisjs 2026

Referanslar

https://github.com/adonisjs/bodyparser/commit/40e1c71f958cffb74f6b91bed6630dca979062ed https://github.com/adonisjs/bodyparser/releases/tag/v11.0.0-next.9 https://github.com/adonisjs/core/security/advisories/GHSA-f5x2-vj4h-vg4c