Количество 2
Количество 2
CVE-2024-6783
A vulnerability has been discovered in Vue, that allows an attacker to perform XSS via prototype pollution. The attacker could change the prototype chain of some properties such as `Object.prototype.staticClass` or `Object.prototype.staticStyle` to execute arbitrary JavaScript code.
GHSA-g3ch-rx76-35fx
vue-template-compiler vulnerable to client-side Cross-Site Scripting (XSS)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-6783 A vulnerability has been discovered in Vue, that allows an attacker to perform XSS via prototype pollution. The attacker could change the prototype chain of some properties such as `Object.prototype.staticClass` or `Object.prototype.staticStyle` to execute arbitrary JavaScript code. | CVSS3: 4.8 | 0% Низкий | больше 1 года назад |
| GHSA-g3ch-rx76-35fx vue-template-compiler vulnerable to client-side Cross-Site Scripting (XSS) | CVSS3: 4.2 | 0% Низкий | больше 1 года назад |
Уязвимостей на страницу