Use of Insufficiently Random Values vulnerability in form-data allows HTTP Parameter Pollution (HPP). This vulnerability is associated with program files lib/form_data.Js. This issue affects form-data: < 2.5.4, 3.0.0 - 3.0.3, 4.0.0 - 4.0.3.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| form-data(npm) | 0 | 2.5.4 | N/A |
| form-data(npm) | 3.0.0 | 3.0.4 | N/A |
| form-data(npm) | 4.0.0 | 4.0.4 | N/A |
CVSS Metrics
