@bloggrify/bento (>=3.0.0 <=3.0.1), @bloggrify/core (>=3.0.0 <=3.1.2) +22 more potentially affected by CVE-2026-47200 via nuxt (>=4.0.0-rc.0 <=4.4.4)

nuxt NPM version =4.0.0-rc.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =1.0.3, =10.0.2, =1.1.11, =1.0.4, =0.4.5, =0.0.0, =0.0.1, =1.0.0, =1.1.0, =2.0.1 and more Source cves: CVE-2026-47200 Source advisory: OSV:GHSA-HG3F-28RG-4JXJ...

@geode/opengeodeweb-front (>=9.13.1 <=10.0.2-rc.4), nuxt (>=3.20.0 <=3.21.5) potentially affected by CVE-2026-47200 via @nuxt/nitro-server (>=3.20.0 <=3.21.5)

@nuxt/nitro-server NPM version =3.20.0, =9.13.1, =3.20.0, =3.21.5 Source cves: CVE-2026-47200 Source advisory: SNYK:JS-NUXTNITROSERVER-17111073...

EUVD-2025-29762

Malicious code in bioql PyPI...

@sit-onyx/demo-app (>=0.0.0 <=0.1.0-dev-20250919122003) potentially affected by CVE-2025-59414 via nuxt (=4.0.3)

nuxt NPM version =4.0.3 is affected by a known vulnerability. The following packages have a transitive dependency on nuxt and may be impacted: - @sit-onyx/demo-app =0.0.0, =0.1.0-dev-20250919122003 Source cves: CVE-2025-59414 Source advisory: OSV:GHSA-P6JQ-8VC4-79F6...

@sit-onyx/demo-app (>=0.0.0 <=0.1.0-dev-20250919122003) potentially affected by CVE-2025-59414 via nuxt (=4.0.3)

nuxt NPM version =4.0.3 is affected by a known vulnerability. The following packages have a transitive dependency on nuxt and may be impacted: - @sit-onyx/demo-app =0.0.0, =0.1.0-dev-20250919122003 Source cves: CVE-2025-59414 Source advisory: SNYK:JS-NUXT-12878602...

CVE-2025-54075 mdc vulnerable to XSS in markdown rendering bypassing HTML filter. (N°4)

MDC is a tool to take regular Markdown and write documents interacting deeply with a Vue component. Prior to version 0.17.2, a remote script-inclusion / stored cross-site scripting vulnerability in @nuxtjs/mdc lets a Markdown author inject a element. The tag rewrites how all subsequent relative...

@neutron.co.id/pemasaran-modules (>=1.1.1-beta.3 <=1.4.0), nuxt-hydration (>=0.0.1 <=0.1.0) potentially affected by CVE-2023-3224 via nuxt (=3.4.2)

nuxt NPM version =3.4.2 is affected by a known vulnerability. The following packages have a transitive dependency on nuxt and may be impacted: - @neutron.co.id/pemasaran-modules =1.1.1-beta.3, =0.0.1, =0.1.0 Source cves: CVE-2023-3224 Source advisory: OSV:GHSA-GC34-5V43-H7V8...