A vulnerability labeled as critical has been found in AdonisJS up to 10.1.4/11.0.2. This issue affects the function
Set of the component Bodyparser. Executing a manipulation can lead to use of blocking code in single-threaded, non-blocking context.
This vulnerability appears as CVE-2026-48795. The attack may be performed from remote. There is no available exploit.