nuxt is vulnerable to cross-site scripting(XSS) attacks. A malicious user is able to pass a specifically crafted URL with no protocol or search parameters through the _getPayloadURL
function and execute harmful JavaScript on the target system. The vulnerability currently exists only on prerendered sites.