CVE-2025-13158 | apiDoc apidoc-core up to 0.2.0 api_group.js preProcess prototype pollution

A vulnerability, which was classified as critical, has been found in apiDoc apidoc-core up to 0.2.0. The affected element is the function preProcess of the file api_group.js. The manipulation leads to improperly controlled modification of object prototype attributes (‘prototype pollution’).

This vulnerability is referenced as CVE-2025-13158. Remote exploitation of the attack is possible. No exploit is available.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

CVE-2025-13158 | apiDoc apidoc-core up to 0.2.0 api_group.js preProcess prototype pollution

Post correlati

CVE-2024-35200 | F5 NGINX Plus/NGINX Open Source HTTP3 QUIC denial of service (K000139612)

CVE-2023-49331 | Zoho ManageEngine ADAudit Plus up to 7270 Reports Search Aggregation sql injection

CVE-2024-37444 | WPMU Defender Security Plugin up to 4.7.1 on WordPress authorization

CVE-2024-42388 | Cesanta Mongoose Web Server up to 7.14 TLS Packet out-of-range pointer offset