← Back to CVE List
CVE-2020-7699
This affects the package express-fileupload before 1.1.8. If the parseNested option is enabled, sending a corrupt HTTP request can lead to denial of service or arbitrary code execution.
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt