| Package | node-form-data |
|---|---|
| Version | 2.3.2-2+deb10u1 (buster) |
| Related CVEs | CVE-2025-7783 |
It was discovered that there was a potential HTTP Parameter Pollution (HPP) issue in node-form-data, a tool to create multipart/form-data streams module in Node.js applications.
For Debian 10 buster, these problems have been fixed in version 2.3.2-2+deb10u1.
We recommend that you upgrade your node-form-data packages.
Further information about Extended LTS security advisories can be found in the dedicated section of our website.