New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Formidable arbitrary file upload vulnerability #6366
Comments
Hi, Thanks for highlighting it, we are also facing this issue, Kindly check and do the needful. |
VicJerUk
changed the title
Formidable arbitrary file upload
Formidable arbitrary file upload vulnerability
Apr 25, 2024
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Describe the bug
Axios uses
formidable
as a dependency and uses v <3.2.4 - in a Dependabot scan we're getting a report that vulnerability in v belo2 3.2.4 it allows attackers to execute arbitrary code by a crafted filename.By the way your HUNTR page doesn't work.
The text was updated successfully, but these errors were encountered: