If you discover a security vulnerability within AdonisJS, please send an email to Harminder Virk at virk@adonisjs.com. All security vulnerabilities will be promptly addressed.
Security: adonisjs/core
Security
docs/SECURITY.md
-
Prototype Pollution in AdonisJS multipart body parsingGHSA-f5x2-vj4h-vg4c published
Feb 6, 2026 by RomainLanzHigh -
Denial of Service via unbounded memory usage in AdonisJS multipart parsingGHSA-xx9g-fh25-4q64 published
Feb 6, 2026 by RomainLanzHigh -
AdonisJS Path Traversal in Multipart File HandlingGHSA-gvq6-hvvp-h34h published
Jan 2, 2026 by RomainLanzCritical
Learn more about advisories related to adonisjs/core in the GitHub Advisory Database