vue-i18n has cross-site scripting vulnerability with prototype pollution

Description

XSS

Recommendation

Update the petite-vue-i18n package to the latest compatible version. Followings are version details:

• Affected version(s): >= 10.0.0, < 10.0.5
• Patched version(s): 10.0.5

References

• GHSA-9r9m-ffp6-9x4v
• CVE-2024-52809
• CWE-79
• CAPEC-310
• OWASP 2021-A3
• OWASP 2021-A6

Related Issues

• vue-i18n has cross-site scripting vulnerability with prototype pollution - @intlify/core - CVE-2024-52809
• vue-i18n has cross-site scripting vulnerability with prototype pollution - vue-i18n - CVE-2024-52809
• vue-i18n has cross-site scripting vulnerability with prototype pollution - @intlify/vue-i18n-core - CVE-2024-52809
• vue-i18n has cross-site scripting vulnerability with prototype pollution - @intlify/core-base - CVE-2024-52809

You might also like:

How do hackers hack websites?

CSRF, XXE, and 12 Other Security Acronyms Explained

Exploiting Server Version Disclosure

Tags:

npm

petite-vue-i18n