VYPR

npm package

sassdoc-extras

pkg:npm/sassdoc-extras

Vulnerabilities (1)

  • CVE-2025-57326Sep 24, 2025
    affected <= 3.0.0

    A Prototype Pollution vulnerability in the byGroupAndType function of sassdoc-extras v2.5.1 and before allows attackers to inject properties on Object.prototype via supplying a crafted payload, causing denial of service (DoS) as the minimum consequence.