EPSS
Percentile
39.5%
Versions of @nuxt/devalue prior to 1.2.3 are vulnerable to Cross-Site Scripting. Due to insufficient input sanitization attacker may inject arbitrary JavaScript code through object keys.
@nuxt/devalue
Upgrade to version 1.2.3 or later.