Lucene search
K

4 matches found

Snyk
Snyk
added 2026/04/09 7:10 p.m.3 views

Incomplete List of Disallowed Inputs

Overview org.webjars.npm:unhead is a Full-stack manager built for any framework. Affected versions of this package are vulnerable to Incomplete List of Disallowed Inputs in the hasDangerousProtocol function though the usage of HtmlEntityHex and HtmlEntityDec RegExp. An attacker can inject malicio...

6.1CVSS5.8AI score0.00285EPSS
Exploits1References2
Snyk
Snyk
added 2026/04/09 7:10 p.m.6 views

Incomplete List of Disallowed Inputs

Overview unhead is a Full-stack manager built for any framework. Affected versions of this package are vulnerable to Incomplete List of Disallowed Inputs in the hasDangerousProtocol function though the usage of HtmlEntityHex and HtmlEntityDec RegExp. An attacker can inject malicious URIs into the...

6.1CVSS5.8AI score0.00285EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/04/09 5:54 p.m.3 views

CVE-2026-39315 Unhead has a hasDangerousProtocol() bypass via leading-zero padded HTML entities in useHeadSafe()

Unhead is a document head and template manager. Prior to 2.1.13, useHeadSafe is the composable that Nuxt's own documentation explicitly recommends for rendering user-supplied content in safely. Internally, the hasDangerousProtocol function in packages/unhead/src/plugins/safe.ts decodes HTML...

6.1CVSS5.8AI score0.00285EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/04/09 5:54 p.m.17 views

CVE-2026-39315 Unhead has a hasDangerousProtocol() bypass via leading-zero padded HTML entities in useHeadSafe()

Unhead is a document head and template manager. Prior to 2.1.13, useHeadSafe is the composable that Nuxt's own documentation explicitly recommends for rendering user-supplied content in safely. Internally, the hasDangerousProtocol function in packages/unhead/src/plugins/safe.ts decodes HTML...

6.1CVSS0.00285EPSS
Exploits1References3
Rows per page
Query Builder