HIGH 8.1
GHSA-gc34-5v43-h7v8
nuxt Code Injection vulnerability
상세
he Nuxt dev server between versions 3.4.0 and 3.4.3 is vulnerable to code injection when it is exposed publicly.
이 버전이 영향받나요?
사용 중인 패키지 버전을 입력하면 즉시 평가합니다.
영향 패키지
참고
- https://nvd.nist.gov/vuln/detail/CVE-2023-3224 [ADVISORY]
- https://github.com/nuxt/nuxt/issues/21694 [WEB]
- https://github.com/nuxt/nuxt/commit/65a8f4eb3ef1b249a95fd59e323835a96428baff [WEB]
- https://github.com/nuxt/nuxt/commit/72ba53efbc2384f802d654fffd92eaf36a81b507 [WEB]
- https://github.com/nuxt/nuxt [PACKAGE]
- https://github.com/nuxt/nuxt/commits/v3.4.3 [WEB]
- https://huntr.dev/bounties/1eb74fd8-0258-4c1f-a904-83b52e373a87 [WEB]