Seal Security raises $13M series A to secure open source code at scale. Read full press release.
.avif)
### Impact* The multipart body parser accepts an unlimited number of file parts.* The multipart body parser accepts an unlimited number of field parts.* The multipart body parser accepts an unlimited number of empty parts as fieldparts.### PatchesThis is fixed in v7.4.1 (for Fastify v4.x) and v6.0.1 (for Fastify v3.x).### WorkaroundsThere are no known workaround. ### ReferencesReported at https://hackerone.com/reports/1816195.
Fix available through Seal Security. No upgrade required, protect your application instantly.
Fix without upgrading