Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
Multer File Upload Data Exposure in Root.io Package
ROOT-APP-NPM-CVE-2026-2359
Summary
A security issue in the Multer package used by Root.io could allow unauthorized access to file data. This affects users of the Root.io service who rely on Multer for file uploads. Update to a patched version of Multer to ensure your files are secure.
What to do
- Update rootio @rootio/multer to version 2.0.2-root.io.3.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| rootio | @rootio/multer | <= 2.0.2-root.io.3 | 2.0.2-root.io.3 |
Original title
CVE-2026-2359 in @rootio/multer - Patched by Root
Original description
Root has patched CVE-2026-2359 in the @rootio/multer package for Root:npm. Multiple fixed versions available.
Published: 9 Mar 2026 · Updated: 13 Mar 2026 · First seen: 9 Mar 2026