Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

multer

Ecosystem:
npm
Package URL:
pkg:npm/multer
Total PRs:
7,012 Dependabot PRs
Latest PR:
4 days ago
Unique Repositories:
4,433 repositories
Unique Repos (30 days):
49 repositories
Security Advisories
Multer vulnerable to Denial of Service via resource exhaustion
GHSA-v52c-386h-88mc CVE-2026-2359 HIGH published 3 months ago • updated 3 days ago
### Impact A vulnerability in Multer versions < 2.1.0 allows an attacker to trigger a Denial of Service (DoS) by dropping connection during file u...
Multer vulnerable to Denial of Service from maliciously crafted requests
GHSA-4pg4-qvpc-4q3h CVE-2025-47944 HIGH published about 1 year ago • updated 3 days ago
### Impact A vulnerability in Multer versions >=1.4.4-lts.1 allows an attacker to trigger a Denial of Service (DoS) by sending a malformed multi-pa...
Multer vulnerable to Denial of Service via unhandled exception
GHSA-g5hg-p3ph-g8qg CVE-2025-48997 HIGH published 12 months ago • updated about 2 months ago
### Impact A vulnerability in Multer versions >=1.4.4-lts.1, <2.0.1 allows an attacker to trigger a Denial of Service (DoS) by sending an upload f...
Multer vulnerable to Denial of Service via incomplete cleanup
GHSA-xf7r-hgr6-v32p CVE-2026-3304 HIGH published 3 months ago • updated 3 days ago
### Impact A vulnerability in Multer versions < 2.1.0 allows an attacker to trigger a Denial of Service (DoS) by sending malformed requests, poten...
Multer vulnerable to Denial of Service via memory leaks from unclosed streams
GHSA-44fp-w29j-9vj5 CVE-2025-47935 HIGH published about 1 year ago • updated about 2 months ago
### Impact Multer <2.0.0 is vulnerable to a resource exhaustion and memory leak issue due to improper stream handling. When the HTTP request strea...
View all 7 advisories
Recent PRs
RSS Feed
chore(deps): bump the dependencies group with 78 updates

Angelqg01/bez-digital-ecosystem #27

2.0.2 → 2.1.1 Minor PR
Open 4 days ago 2 comments
Angelqg01
chore(deps): bump the patch-updates group across 1 directory with 77 updates

dculussoftwares/dculus-forms #48

2.0.2 → 2.1.1 Minor PR
Closed 4 days ago 1 comment
dculussoftwares
chore(deps): bump the npm_and_yarn group across 1 directory with 2 updates

rushikesh-bobade/empay-hrms #69

1.4.5-lts.2 → 2.1.1 Major PR
Open 4 days ago 2 comments
rushikesh-bobade
Bump multer from 1.4.2 to 2.1.1

svbgabriel/gobarber-backend #26

1.4.2 → 2.1.1 Major PR
Closed 6 days ago 1 comment
svbgabriel
build(deps): bump the all group in /api with 17 updates

gsaraiva2109/VinylVault #94

1.4.5-lts.2 → 2.1.1 Major PR
Open 6 days ago 2 comments
gsaraiva2109
chore(deps): bump multer from 1.4.4 to 2.1.1

webtorrent/webtorrent.io #305

1.4.4 → 2.1.1 Major PR
Open 6 days ago 1 comment
webtorrent
Bump the patch-and-minor group across 1 directory with 8 updates

Peacanduck/solignition #12

2.0.2 → 2.1.1 Minor PR
Open 7 days ago 2 comments
Peacanduck
chore(server): Bump the media group in /server with 2 updates

Elmanosound/familyapp #73

1.4.5-lts.2 → 2.1.1 Major PR
Open 7 days ago 1 comment
Elmanosound
chore(deps): bump the server-deps group across 1 directory with 14 updates

Builder106/MedCore #9

1.4.5-lts.2 → 2.1.1 Major PR
Open 7 days ago 2 comments
Builder106
chore(deps): bump the npm_and_yarn group across 45 directories with 6 updates

JovannyCO/nodejs-docs-samples #22

1.4.4 → 2.1.1 Major PR
Closed 7 days ago 1 comment
JovannyCO
Bump multer and @types/multer

aswer18400/QXwap #218

1.4.5-lts.2 → 2.1.1 Major PR
Open 7 days ago 4 comments
aswer18400
Bump the production-dependencies group across 1 directory with 21 updates

abishkar123/Resume-optimization-api #23

1.4.5-lts.2 → 2.1.1 Major PR
Open 7 days ago 1 comment
abishkar123
chore(deps): Bump the npm_and_yarn group across 1 directory with 7 updates

ry-ops/ATSFlow #16

2.0.2 → 2.1.1 Minor PR
Closed 9 days ago 2 comments
ry-ops
chore(deps): bump the npm_and_yarn group across 31 directories with 6 updates

JovannyCO/nodejs-docs-samples #18

1.4.4 → 2.1.1 Major PR
Closed 9 days ago 1 comment
JovannyCO
chore(deps): bump the npm_and_yarn group across 14 directories with 6 updates

JovannyCO/nodejs-docs-samples #15

1.4.4 → 2.1.1 Major PR
Closed 9 days ago 1 comment
JovannyCO
Bump the npm_and_yarn group across 2 directories with 21 updates

rorymclaughlin432/admin-dashboard-charts #2

2.0.2 → 2.1.1 Minor PR
Open 9 days ago 1 comment
rorymclaughlin432
chore(deps): bump the npm_and_yarn group across 2 directories with 15 updates

infrareactive/Orus-Builder-FullStack #12

2.0.2 → 2.1.1 Minor PR
Closed 9 days ago 1 comment
infrareactive
Bump multer from 1.4.5-lts.2 to 2.1.1 in the npm_and_yarn group across 1 directory

GlacierEQ/stagehand #13

1.4.5-lts.2 → 2.1.1 Major PR
Open 9 days ago 2 comments
GlacierEQ
Bump the npm_and_yarn group across 3 directories with 3 updates

SamaelxLunafreya/selenium #22

1.4.5-lts.2 → 2.1.1 Major PR
Open 9 days ago 1 comment
SamaelxLunafreya
chore(deps): bump multer from 1.4.5-lts.2 to 2.1.1 in /server in the npm_and_yarn group across 1 directory

printwithsynergy/lens-pdf #12

1.4.5-lts.2 → 2.1.1 Major PR
Open 9 days ago 3 comments
printwithsynergy
Bump the npm_and_yarn group across 2 directories with 1 update

IAM-Nitesh/Shaadi_Mantrana #46

1.4.5-lts.1 → 2.1.1 Major PR
Open 9 days ago 1 comment
IAM-Nitesh
Bump the npm_and_yarn group across 1 directory with 25 updates

fujimakis-sss/juice-shop #4

1.4.5-lts.2 → 2.1.1 Major PR
Closed 10 days ago 1 comment
fujimakis-sss
chore(deps): bump the patch-updates group with 44 updates

dculussoftwares/dculus-forms #21

2.0.2 → 2.1.1 Minor PR
Closed 11 days ago 1 comment
dculussoftwares
Bump the npm_and_yarn group across 5 directories with 18 updates

c6ai/caliper #27

1.4.4 → 2.1.1 Major PR
Closed 12 days ago 1 comment
c6ai
chore(deps): Bump the minor-and-patch group across 1 directory with 6 updates

kshartman/media-management-system #49

2.1.0 → 2.1.1 Patch PR
Open 13 days ago 1 comment
kshartman
Bump multer from 1.4.5-lts.2 to 2.1.1 in /admin

AdamNolle/terminal-eighty-blog #9

1.4.5-lts.2 → 2.1.1 Major PR
Open 14 days ago 1 comment
AdamNolle
chore(deps): bump the npm_and_yarn group across 2 directories with 15 updates

infrareactive/Orus-Builder-FullStack #11

2.0.2 → 2.1.1 Minor PR
Closed 15 days ago 1 comment
infrareactive
deps(deps): bump the utilities group with 3 updates

NicholasEmery/newsly-portal-backend #3

2.0.2 → 2.1.1 Minor PR
Open 15 days ago 1 comment
NicholasEmery
build(deps): bump multer from 1.4.5-lts.2 to 2.1.1 in /packages/maestro-proxy

SashalmiImre/Maestro_Plugin #16

1.4.5-lts.2 → 2.1.1 Major PR
Open 16 days ago 1 comment
SashalmiImre
chore(deps): bump multer from 2.0.2 to 2.1.1

KainNhantumbo/ecommerce-app-server #39

2.0.2 → 2.1.1 Minor PR
Closed 16 days ago 1 comment
KainNhantumbo
Bump the npm_and_yarn group across 1 directory with 18 updates

GlacierEQ/stagehand #12

1.4.5-lts.2 → 2.1.1 Major PR
Open 17 days ago 2 comments
GlacierEQ
chore(deps-dev): bump the dev-dependencies group across 1 directory with 10 updates

Contra-Collective/ingenium #26

1.4.5-lts.2 → 2.1.1 Major PR
Closed 17 days ago 1 comment
Contra-Collective
Bump the npm_and_yarn group across 1 directory with 12 updates

GlacierEQ/documind #39

2.0.2 → 2.1.1 Minor PR
Open 18 days ago 3 comments
GlacierEQ
chore(deps): Bump the prod-deps group across 1 directory with 21 updates

hoang2454050218-creator/CompeteHub #21

1.4.5-lts.2 → 2.1.1 Major PR
Open 20 days ago 3 comments
hoang2454050218-creator
deps(deps): bump the major group with 56 updates

SriKaratalapu/juice-shop-krishna #13

1.4.5-lts.2 → 2.1.1 Major PR
Closed 20 days ago 3 comments
SriKaratalapu
chore(deps): bump the production-deps group with 14 updates

DenysDevelopment/BotTeaTelegram #10

2.0.2 → 2.1.1 Minor PR
Open 21 days ago 1 comment
DenysDevelopment
chore(deps)(deps): Bump the production-minor-patch group with 59 updates

ThiagoBauken/SaasClinica #3

2.0.2 → 2.1.1 Minor PR
Closed 22 days ago 2 comments
ThiagoBauken
chore(deps): bump the npm_and_yarn group across 3 directories with 19 updates

Sundsvallskommun/web-app-draken-public #997

2.0.2 → 2.1.1 Minor PR
Open 23 days ago 1 comment
Sundsvallskommun
Bump the npm_and_yarn group across 1 directory with 3 updates

GlacierEQ/stagehand #10

1.4.5-lts.2 → 2.1.1 Major PR
Open 23 days ago 2 comments
GlacierEQ
Bump the npm_and_yarn group across 1 directory with 3 updates

balajirajput96/stagehand #8

1.4.5-lts.2 → 2.1.1 Major PR
Open 24 days ago 1 comment
balajirajput96
chore(deps): bump the npm_and_yarn group across 8 directories with 20 updates

claudiodearaujo/IzaCenter #52

2.0.2 → 2.1.1 Minor PR
Closed 25 days ago 1 comment
claudiodearaujo
chore(deps): bump multer from 1.4.5-lts.2 to 2.1.1 in /src/api

Kode-Rex/muesli #17

1.4.5-lts.2 → 2.1.1 Major PR
Open 25 days ago 1 comment
Kode-Rex
chore(deps): bump the npm_and_yarn group across 4 directories with 27 updates

RyzinRiley/Yarnpkg #12

1.4.2 → 1.4.4 Patch PR
Closed 26 days ago 1 comment
RyzinRiley
chore(deps): bump the npm_and_yarn group across 4 directories with 27 updates

RyzinRiley/Yarnpkg #10

1.4.2 → 1.4.4 Patch PR
Closed 26 days ago 1 comment
RyzinRiley
Build(deps): Bump the npm_and_yarn group across 2 directories with 4 updates

mobiliseapplabllp/mobilise-payroll #5

1.4.5-lts.2 → 2.1.1 Major PR
Closed 27 days ago 1 comment
mobiliseapplabllp
Bump the npm_and_yarn group across 3 directories with 17 updates

EDM115/sporttrack #3

1.4.5-lts.1 → 2.1.1 Major PR
Closed 27 days ago 1 comment
EDM115
build(deps): bump multer from 1.4.5-lts.2 to 2.1.1 in /backend

brayanty/inventory-manager #25

1.4.5-lts.2 → 2.1.1 Major PR
Open 27 days ago 4 comments
brayanty
chore(deps): Bump the prod-deps group across 1 directory with 20 updates

hoang2454050218-creator/CompeteHub #18

1.4.5-lts.2 → 2.1.1 Major PR
Open 27 days ago 2 comments
hoang2454050218-creator
Bump the npm_and_yarn group across 2 directories with 23 updates

SherfeyInv/sourcify #62

2.0.2 → 2.1.1 Minor PR
Open 28 days ago 1 comment
SherfeyInv
chore(deps): bump the npm_and_yarn group across 6 directories with 12 updates

jadenblack/heyform #5

1.4.5-lts.1 → 2.1.1 Major PR
Open 28 days ago 2 comments
jadenblack
Package Details
Name: multer
Ecosystem: npm
PURL Type: npm
Package URL: pkg:npm/multer
JSON API: View JSON
Security Advisories

7

Active advisories
HIGH 7
View All npm Advisories
Package Information
Description:

Middleware for handling `multipart/form-data`.

Repository: https://github.com/expressjs/multer
Homepage: https://github.com/expressjs/multer#readme
Latest Release: 2.0.1
12 months ago
Dependent Repos: 323,227
Dependent Packages: 4,202
Downloads: 29,118,183
Ranking: Top 0.0655% by dependent repos Top 0.0665% by downloads Top 0.0226% by dependent pkgs
PR Status
Open 3,565 (50.8%)
Merged 1,304 (18.6%)
Closed 1,645 (23.5%)
PR Types
Major 4,517 (64.4%)
Minor 443 (6.3%)
Patch 1,414 (20.2%)
Removal 8 (0.1%)