Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
apidoc-core - prototype pollution in api_group.js, api_param_title.js, api_use.js, and api_permission.js worker
Vulnerability Description
Prototype pollution vulnerability in apidoc-core versions 0.2.0 and all subsequent versions allows remote attackers to modify JavaScript object prototypes via malformed data structures, including the “define” property processed by the application, potentially leading to denial of service or unintended behavior in applications relying on the integrity of prototype chains. This affects the preProcess() function in api_group.js, api_param_title.js, api_use.js, and api_permission.js worker modules.
CVSS Information
N/A
Vulnerability Type
CWE-1321
Vulnerability Title
apidoc-core 安全漏洞
Vulnerability Description
apidoc-core是apiDoc开源的一个解析器库。 apidoc-core 0.2.0版本及之后版本存在安全漏洞,该漏洞源于原型污染,可能导致远程攻击者修改JavaScript对象原型,引发拒绝服务或意外行为。
CVSS Information
N/A
Vulnerability Type
N/A