pkg:npm/@strapi/upload

All known vulnerabilities

• —CVE-2026-22707Strapi Upload Plugin MIME Validation Bypass via Content API
  from 0, < 5.33.3