Formidable arbitrary file upload vulnerability

[VicJerUk]

Describe the bug

Axios uses formidable as a dependency and uses v <3.2.4 - in a Dependabot scan we're getting a report that vulnerability in v belo2 3.2.4 it allows attackers to execute arbitrary code by a crafted filename.

By the way your HUNTR page doesn't work.

[deepakraigkp]

Hi, Thanks for highlighting it, we are also facing this issue, Kindly check and do the needful.

[jasonsaayman]

thanks will look to try update