CVE-2025-57317

Name of the Vulnerable Software and Affected Versions apidoc-core versions through 0.15.0

Description apidoc-core is the core parser library used to generate apidoc results based on the apidoc-spec. A flaw exists in the preProcess function that allows for prototype pollution. By providing a specially crafted payload, attackers can inject properties onto Object.prototype, potentially leading to a denial of service (DoS).

Recommendations Update apidoc-core to a version later than 0.15.0.