5 matches found
@andor83/mother-may-i (>=1.0.1 <=1.0.10), @bloggrify/bento (>=0.9.1 <=1.0.0) +55 more potentially affected by CVE-2025-27415 via nuxt (>=3.0.0 <=3.15.4)
nuxt NPM version =3.0.0, =1.0.1, =0.9.1, =1.1.1, =1.0.1, =1.1.0, =0.3.14, =9.8.3, =1.12.0-rc.5, =1.0.0, =1.0.0, =0.13.0, =0.7.2, =0.7.3, =0.9.1, =0.13.1, =0.15.0 and more Source cves: CVE-2025-27415 Source advisory: OSV:GHSA-JVHM-GJRH-3H93...
CVE-2025-27415
creationtimestamp| type| source ---|---|--- 2025-03-19 19:18:19+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/8125 2025-03-19 20:48:48+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lkr2mxpqkl2m 2025-03-19 22:01:14+00:00| published-proof-of-concept|...
CVE-2025-27415
Nuxt is an open-source web development framework for Vue.js. Prior to 3.16.0, by sending a crafted HTTP request to a server behind an CDN, it is possible in some circumstances to poison the CDN cache and highly impacts the availability of a site. It is possible to craft a request, such as...
CVE-2025-27415 Nuxt allows DOS via cache poisoning with payload rendering response
Nuxt is an open-source web development framework for Vue.js. Prior to 3.16.0, by sending a crafted HTTP request to a server behind an CDN, it is possible in some circumstances to poison the CDN cache and highly impacts the availability of a site. It is possible to craft a request, such as...
CVE-2025-27415
CVE-2025-27415 affects Nuxt (Vue.js framework) prior to version 3.16.0. A crafted HTTP request sent to a server behind a CDN can poison the CDN cache under certain conditions, potentially rendering JSON like https://mysite.com/?/_payload.json and causing the cached response to be served to future...