EUVD-2026-38378

Nuxt versions 4.0.0 before 4.4.7 and 3.x before 3.21.7 accept protocol-relative paths such as //evil.com in the reloadNuxtApp function; these pass the script-protocol check but resolve to a cross-origin URL against the current page protocol. Attackers can inject paths like //evil.com to redirect...

EUVD-2026-38379

Nuxt versions 4.0.0 before 4.4.7 and 3.x before 3.21.7 fail to validate script-capable URLs in the navigateTo open option, allowing client-side script execution. Attackers can supply javascript: URLs through the open parameter to execute arbitrary scripts in the application's origin when...

EUVD-2026-38112

Nuxt before 4.4.7 and the 3.x branch before 3.21.7 contains a cross-site scripting vulnerability in the NoScript component that writes slot content to innerHTML without escaping. Attackers can inject malicious scripts through untrusted data in NoScript slots, such as route.query parameters, which...

@bloggrify/bento (>=3.0.0 <=3.0.1), @bloggrify/core (>=3.0.0 <=3.1.2) +22 more potentially affected by CVE-2026-47200 via nuxt (>=4.0.0-rc.0 <=4.4.4)

nuxt NPM version =4.0.0-rc.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =1.0.3, =10.0.2, =1.1.11, =1.0.4, =0.4.5, =0.0.0, =0.0.1, =1.0.0, =1.1.0, =2.0.1 and more Source cves: CVE-2026-47200 Source advisory: SNYK:JS-NUXT-17111072...

@classement-des-associations/website-theme (=0.1.3), @geode/opengeodeweb-front (>=9.13.1 <=10.0.2-rc.4) +22 more potentially affected by CVE-2026-46342 via nuxt (>=3.1.2 <=3.20.1)

nuxt NPM version =3.1.2, =9.13.1, =0.20.1, =0.15.1, =0.13.1, =0.16.0, =0.10.1, =0.16.1, =0.13.0, =1.0.0-beta.1, =1.1.0-beta.1, =1.1.0-beta.3 and more Source cves: CVE-2026-46342 Source advisory: SNYK:JS-NUXT-16770418...

@andor83/mother-may-i (>=1.0.1 <=1.0.10), @bloggrify/bento (>=0.9.1 <=1.0.0) +55 more potentially affected by CVE-2025-27415 via nuxt (>=3.0.0 <=3.15.4)

nuxt NPM version =3.0.0, =1.0.1, =0.9.1, =1.1.1, =1.0.1, =1.1.0, =0.3.14, =9.8.3, =1.12.0-rc.5, =1.0.0, =1.0.0, =0.13.0, =0.7.2, =0.7.3, =0.9.1, =0.13.1, =0.15.0 and more Source cves: CVE-2025-27415 Source advisory: OSV:GHSA-JVHM-GJRH-3H93...

PT-2025-5343 · Webpack +2 · Webpack +2

Name of the Vulnerable Software and Affected Versions: Nuxt versions 3.0.0 through 3.15.12 Nuxt versions 3.12.2 through 3.152 Description: Source code may be stolen during development when using the webpack or rspack builder and a victim opens a malicious website. Because the request for classic...

PT-2025-5342 · Vite +1 · Vite +1

Name of the Vulnerable Software and Affected Versions: Nuxt versions 3.8.1 through 3.15.2 Description: The issue arises due to default CORS settings in Nuxt, allowing any website to send requests to the development server and read the response. This can lead to source code theft by malicious...

0xrtest (=1.0.0), @0xr404/0xrtest (=1.0.0) +515 more potentially affected by CVE-2024-34343 via nuxt (>=0.10.7 <=3.12.3)

nuxt NPM version =0.10.7, =0.0.11, =1.1.11, =1.0.1, =0.0.3-dev, =0.1.0, =1.0.0, =0.1.5, =0.0.1, =1.6.24, =0.9.1, =0.9.4 and more Source cves: CVE-2024-34343 Source advisory: OSV:GHSA-VF6R-87Q4-2VJF...