CVE-2025-47944 – Multer Denial of Service

May 19, 2025

CVE ID : CVE-2025-47944

Published : May 19, 2025, 8:15 p.m. | 2 hours, 33 minutes ago

Description : Multer is a node.js middleware for handling `multipart/form-data`. A vulnerability that is present starting in version 1.4.4-lts.1 and prior to version 2.0.0 allows an attacker to trigger a Denial of Service (DoS) by sending a malformed multi-part upload request. This request causes an unhandled exception, leading to a crash of the process. Users should upgrade to version 2.0.0 to receive a patch. No known workarounds are available.

Severity: 7.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-47949 – Samlify SAML Response Signature Wrapping Vulnerability

Next Article CVE-2025-39393 – Mojoomla Hospital Management System Cross-site Scripting Vulnerability

10 Top Node.js Development Companies for Enterprise-Scale Projects (2025-2026 Ranked & Reviewed)

12 Must-Know Cost Factors When Hiring Node.js Developers for Your Enterprise

Mirantis reveals Lens Prism, an AI copilot for operating Kubernetes clusters

Avoid these common platform engineering mistakes

“A fantastic device for creative users” — this $550 discount on ASUS’s 3K OLED creator laptop disappears before Prime Day

Distribution Release: Rhino Linux 2025.3

Just days after joining Game Pass, the Xbox PC edition of Call of Duty: WW2 is taken offline for “an issue”

Xbox layoffs and game cuts wreak havoc on talented developers and the company’s future portfolio — Weekend discussion 💬

Flaget – new small 5kB CLI argument parser

Flaget – new small 5kB CLI argument parser

The dog days of JavaScript summer

Databricks Lakebase – Database Branching in Action

“A fantastic device for creative users” — this $550 discount on ASUS’s 3K OLED creator laptop disappears before Prime Day

“A fantastic device for creative users” — this $550 discount on ASUS’s 3K OLED creator laptop disappears before Prime Day

Distribution Release: Rhino Linux 2025.3

EmptyEpsilon – spaceship bridge simulator game

CVE-2025-47944 – Multer Denial of Service

CVE-2025-1317 – Apache HTTP Server Remote Code Execution Vulnerability

CVE-2025-1318 – CVE-2022-1234: Cisco WebEx Meeting Center Unvalidated Redirect

8 simple ways Mac users can better protect their privacy

CVE-2025-4154 – PHPGurukul Pre-School Enrollment System SQL Injection Vulnerability

CVE-2025-48468 – “Juniper JTAG Firmware Injection Vulnerability”

Fewer Ideas: An Unconventional Approach To Creativity

PIM for Azure Resources

Chinese APT41 Exploits Google Calendar for Malware Command-and-Control Operations

CVE-2025-49198 – Vulnerability Title: “DREAMSERVER Token Guessing Vulnerability”

10+ Best Free Portfolio & Lookbook Templates for InDesign in 2025

CVE-2025-47944 – Multer Denial of Service

Related Posts