CVE-2025-52662

A vulnerability in Nuxt DevTools has been fixed in version 2.6.4. This issue may have allowed Nuxt auth token extraction via XSS under certain configurations. All users are encouraged to upgrade. More details: https://vercel.com/changelog/cve-2025-52662-xss-on-nuxt-devtools...

CVE-2025-52662

A vulnerability in Nuxt DevTools has been fixed in version 2.6.4. This issue may have allowed Nuxt auth token extraction via XSS under certain configurations. All users are encouraged to upgrade. More details: https://vercel.com/changelog/cve-2025-52662-xss-on-nuxt-devtools...

CVE-2025-52662

A vulnerability in Nuxt DevTools has been fixed in version 2.6.4. This issue may have allowed Nuxt auth token extraction via XSS under certain configurations. All users are encouraged to upgrade. More details: https://vercel.com/changelog/cve-2025-52662-xss-on-nuxt-devtools...

CVE-2025-52662

Nuxt DevTools contains an XSS vulnerability that could allow extraction of authentication tokens under certain configurations. The issue has been fixed in version 2.6.4, and users are advised to upgrade to mitigate the risk. Affected component: Nuxt DevTools; nature: cross-site scripting on the a...

PT-2025-45398

Name of the Vulnerable Software and Affected Versions Nuxt DevTools versions prior to 2.6.4 Description A flaw exists in Nuxt DevTools that could allow the extraction of Nuxt authentication tokens through a cross-site scripting XSS attack, under specific configurations. Recommendations Update to...

Nuxt DevTools 安全漏洞

Nuxt DevTools is an open source set of visualization tools from Nuxt. A security vulnerability exists in Nuxt DevTools version 2.6.4 that stems from the possibility of extracting Nuxt authentication tokens via cross-site scripting under certain configurations...

Exploit for OS Command Injection in Nestjs Devtools-Integration

PoC exploit for CVE-2025-54782, a vulnerability in an unspecifie...

Astra Linux – Vulnerability in Chromium

Insufficient policy enforcement in Devtools in Google Chrome prior to 140.0.7339.80 allowed a remote attacker to leak cross-origin data via Devtools. Chromium security severity: Low...

Exploit for Cross-Site Request Forgery (CSRF) in Nestjs Devtools-Integration

CVE-2025-54...

Malicious Package

Overview @jdtaro/dynamic-devtools-utils is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and thi...

EUVD-2025-35150

Malicious code in @jdtaro/dynamic-devtools-utils npm...

Malicious code in @jdtaro/dynamic-devtools-utils (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 31153e0cd25bffc9c1582e7fe176e131e49c4a1fdfdc58c55cdf25dcd99a5b55 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

EUVD-2019-15341

Malware in sbrugna...

EUVD-2018-17903

Malware in sbrugna...

EUVD-2018-17914

Malware in sbrugna...

EUVD-2018-17941

Malware in sbrugna...

EUVD-2018-17864

Malware in sbrugna...

EUVD-2020-4705

Malware in sbrugna...

EUVD-2021-17538

Malware in sbrugna...

EUVD-2021-17487

Malware in sbrugna...