CVE-2025-68130 | trpc up to 10.45.2/11.7.x FormDataToObject prototype pollution

A vulnerability was found in trpc up to 10.45.2/11.7.x. It has been rated as critical. This vulnerability affects the function FormDataToObject. This manipulation causes improperly controlled modification of object prototype attributes (‘prototype pollution’).

The identification of this vulnerability is CVE-2025-68130. It is possible to initiate the attack remotely. There is no exploit available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More