4 matches found
@andor83/mother-may-i (>=1.0.1 <=1.0.10), @aneoconsultingfr/armonik-docs-theme (>=0.6.4 <=0.6.15) +52 more potentially affected by CVE-2025-52662 via @nuxt/devtools (>=0.1.6 <=2.6.3)
@nuxt/devtools NPM version =0.1.6, =1.0.1, =0.6.4, =0.9.1, =1.1.1, =1.0.1, =1.1.0, =0.0.4, =8.3.3, =1.1.1, =0.0.1, =0.3.14, =9.8.3, =1.12.0-rc.5, =1.12.0-rc.7 - @hebilicious/form-actions-nuxt =0.3.0 - @itai-gendler/tairo =0.0.2 and more Source cves: CVE-2025-52662 Source advisory:...
CVE-2025-52662
creationtimestamp| type| source ---|---|--- 2025-11-07 02:23:11+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m4yzii4j7i2j 2025-11-07 04:45:24+00:00| seen| https://bsky.app/profile/jos1264.social.skynetcloud.site.ap.brid.gy/post/3m4zbgkbls722...
@dargmuesli/nuxt-vio (>=16.0.5 <=18.3.14) potentially affected by CVE-2025-52662 via @nuxt/devtools (>=2.0.0 <=2.6.3)
@nuxt/devtools NPM version =2.0.0, =16.0.5, =18.3.14 Source cves: CVE-2025-52662 Source advisory: SNYK:JS-NUXTDEVTOOLS-13849298...
CVE-2025-52662
A vulnerability in Nuxt DevTools has been fixed in version 2.6.4. This issue may have allowed Nuxt auth token extraction via XSS under certain configurations. All users are encouraged to upgrade. More details: https://vercel.com/changelog/cve-2025-52662-xss-on-nuxt-devtools...