CVE-2025-62381 | ciscoheat sveltekit-superforms up to 2.27.3 formData.js parseFormData prototype pollution

A vulnerability labeled as problematic has been found in ciscoheat sveltekit-superforms up to 2.27.3. This vulnerability affects the function parseFormData of the file formData.js. The manipulation results in improperly controlled modification of object prototype attributes (‘prototype pollution’).

This vulnerability is identified as CVE-2025-62381. The attack can be executed remotely. There is not any exploit available.

The affected component should be upgraded.VulDB Recent EntriesRead More