Cross-site Scripting (XSS)

vuex-router-sync is vulnerable to cross-site scripting XSS attacks. The route parameter used in the server-rendered store in Nuxt render:routeContext hook are not sanitized, allowing an attacker to insert arbitrary Javascript...