Vulnerabilities

CVE-2025-13158 - apidoc-core - prototype pollution in api_group.js, api_param_title.js, api_use.j...

2025-12-26 0 views admin

CVE ID : CVE-2025-13158 Published : Dec. 26, 2025, 4:15 p.m. | 24 minutes ago Description : Prototype pollution vulnerability in apidoc-core versions 0.2.0 and all subsequent versions allows remote attackers to modify JavaScript object prototypes via malformed data structures, including the “define” property processed by the application, potentially leading to denial of service or unintended behavior in applications relying on the integrity of prototype chains. This affects the preProcess() function in api_group.js, api_param_title.js, api_use.js, and api_permission.js worker modules. Severity: 9.3 | CRITICAL Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2025-13158

Severity

CRITICAL

Published

Dec. 26, 2025

Impact: denial of service

Source: Telegram CVE Monitor

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2025-13158critical

CVE-2025-13158 - apidoc-core - prototype pollution in api_group.js, api_param_title.js, api_use.j...

CVE Details

🏷️ Tags

More from Vulnerabilities

CVE-2024-42718 - Croogo CMS Path Traversal Vulnerability

CVE-2024-44065 - Cloudlog Blind SQL Injection

CVE-2025-66737 - Yealink Phone Directory Traversal Vulnerability

CVE-2025-25341 - Libxmljs XML Denial-of-Service Vulnerability

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting