A critical security vulnerability has been discovered in the widely-used JavaScript form-data library, potentially exposing millions of applications to code execution attacks. The vulnerability, assigned CVE-2025-7783, stems from the library’s use of the predictable Math.random() function to generate boundary values for multipart form-encoded data, allowing attackers to manipulate HTTP requests and inject malicious parameters into […]
The post Critical Vulnerability in JavaScript Library Exposes Millions of Apps to Code Execution Attacks appeared first on Cyber Security News.
This article has been indexed from Cyber Security News