Vue.js
by Vue.js
Source repositories
CVEs (2)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-6783 | Med | 0.31 | 4.8 | 0.00 | Jul 23, 2024 | A vulnerability has been discovered in Vue, that allows an attacker to perform XSS via prototype pollution. The attacker could change the prototype chain of some properties such as `Object.prototype.staticClass` or `Object.prototype.staticStyle` to execute arbitrary JavaScript… | ||
| CVE-2024-9506 | Low | 0.24 | 3.7 | 0.00 | Oct 15, 2024 | Improper regular expression in Vue's parseHTML function leads to a potential regular expression denial of service vulnerability. |
- risk 0.31cvss 4.8epss 0.00
A vulnerability has been discovered in Vue, that allows an attacker to perform XSS via prototype pollution. The attacker could change the prototype chain of some properties such as `Object.prototype.staticClass` or `Object.prototype.staticStyle` to execute arbitrary JavaScript…
- risk 0.24cvss 3.7epss 0.00
Improper regular expression in Vue's parseHTML function leads to a potential regular expression denial of service vulnerability.