3 matches found
CVE-2024-34343
Nuxt is a free and open-source framework to create full-stack web applications and websites with Vue.js. The navigateTo function attempts to blockthe javascript: protocol, but does not correctly use API's provided by unjs/ufo. This library also contains parsing discrepancies. The function first...
CVE-2024-34343
Nuxt is a free and open-source framework to create full-stack web applications and websites with Vue.js. The navigateTo function attempts to blockthe javascript: protocol, but does not correctly use API's provided by unjs/ufo. This library also contains parsing discrepancies. The function first...
@awes-io/base-nuxt (>=1.0.0 <=1.0.2), @bee-hole/theme (>=1.22.17 <=1.22.82) +146 more potentially affected by CVE-2024-34343 via nuxt (>=0.10.7 <=3.12.3)
nuxt NPM version =0.10.7, =1.0.0, =1.22.17, =0.9.1, =1.1.1, =1.0.1, =1.1.0, =2.17.8, =0.1.5, =0.4.0, =0.1.0, =2.0.1, =0.0.1, =1.0.1, =1.0.0, =1.1.0, =1.1.4 and more Source cves: CVE-2024-34343 Source advisory: OSV:GHSA-VF6R-87Q4-2VJF...