Vulnerabilities > Fastify > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-01-19 | CVE-2020-28482 | Incorrect Permission Assignment for Critical Resource vulnerability in Fastify Fastify-Csrf This affects the package fastify-csrf before 3.0.0. | 8.8 |
| 2020-03-20 | CVE-2020-8136 | Resource Exhaustion vulnerability in Fastify Fastify-Multipart Prototype pollution vulnerability in fastify-multipart < 1.0.5 allows an attacker to crash fastify applications parsing multipart requests by sending a specially crafted request. | 7.5 |
| 2018-06-07 | CVE-2018-3711 | Allocation of Resources Without Limits or Throttling vulnerability in Fastify Fastify node module before 0.38.0 is vulnerable to a denial-of-service attack by sending a request with "Content-Type: application/json" and a very large payload. | 7.5 |