Sign in Get started

← All advisories

Critical severity9.8NVD Advisory· Published May 7, 2026· Updated May 8, 2026

CVE-2025-63703

CVE-2025-63703

Description

npm package parse-ini v1.0.6 is vulnerable to Prototype Pollution in index.js().

Affected products

1

Naturalintelligence/Parse Inireferences
Package: https://npmjs.com/package/parse-ini

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

4

News mentions

0

No linked articles in our index yet.