Phillip Barta

**Name of the Vulnerable Software and Affected Versions** body-parser versions prior to 2.2.1 **Description** The software is susceptible to a denial of service condition resulting from inefficient processing of URL-encoded request bodies containing a large number of parameters. An attacker can exploit this by sending requests with thousands of parameters within the 100KB request size limit, leading to increased CPU and memory consumption. This can cause service degradation or outages when subjected to continuous malicious traffic. **Recommendations** Update to version 2.2.1 or later.