nuxt vulnerable to Cross-site Scripting in navigateTo if used after SSR

Description

The navigateTo function attempts to blockthe javascript: protocol, but does not correctly use API’s provided by unjs/ufo. This library also contains parsing discrepancies.

Recommendation

Update the nuxt package to the latest compatible version. Followings are version details:

• Affected version(s): < 3.12.4
• Patched version(s): 3.12.4

References

• GHSA-vf6r-87q4-2vjf
• CVE-2024-34343
• CWE-79
• CWE-83
• CAPEC-310
• OWASP 2021-A3
• OWASP 2021-A6

Related Issues

• Bootstrap Cross-Site Scripting (XSS) vulnerability for data-* attributes - CVE-2024-6485
• sanitize-html is vulnerable to XSS through incomprehensive sanitization - CVE-2019-25225
• react-native-keys insecurely stores encryption cipher and Base64 chunks - CVE-2025-45001
• Vega vulnerable to Cross-site Scripting via RegExp.prototype[@@replace] - CVE-2025-27793

Tags:

npm

nuxt