OsVault/npm/vue
npm

vue

142 known vulnerabilities · 0 critical · 1 high

CVE-2024-9506

ReDoS vulnerability in vue package that is exploitable through inefficient regex evaluation in the parseHTML function

Published Oct 15, 2024
MAL-2025-191435

Malicious code in tiptap-shadcn-vue (npm)

Published Nov 24, 2025
CVE-2022-25873MEDIUM

Vuetify Cross-site Scripting vulnerability

Published Sep 19, 2022
CVE-2024-6783

vue-template-compiler vulnerable to client-side Cross-Site Scripting (XSS)

Published Jul 23, 2024
MAL-2023-1460

Malicious code in pingan-vue-floating (npm)

Published Aug 14, 2023
MAL-2022-2842

Malicious code in eslintplugnnvue (npm)

Published Aug 19, 2022
CVE-2025-8082

Vuetify has a Cross-site Scripting (XSS) vulnerability in the VDatePicker component

Published Dec 12, 2025
MAL-2024-10485

Malicious code in eds-vue (npm)

Published Nov 7, 2024
MAL-2026-45

Malicious code in @signify/vue-components (npm)

Published Jan 5, 2026
MAL-2022-6134

Malicious code in site-vue (npm)

Published Jun 20, 2022
MAL-2022-6996

Malicious code in vue-test-utils-mic (npm)

Published Jul 26, 2022
MAL-2022-6994

Malicious code in vue-smooth (npm)

Published Jun 20, 2022
MAL-2022-6997

Malicious code in vue2-jest (npm)

Published Jun 20, 2022
CVE-2025-8083

Vuetify has a Prototype Pollution vulnerability

Published Dec 12, 2025
MAL-2022-594

Malicious code in @smartsteuer/solo-vue-heroicons (npm)

Published Jun 20, 2022
MAL-2024-1311

Malicious code in vue2-amis-custom-widget-kk (npm)

Published Apr 30, 2024
MAL-2022-440

Malicious code in @msmg/vue-auth-tracking (npm)

Published Jun 20, 2022
MAL-2022-442

Malicious code in @msmg/vue-uid (npm)

Published Jun 20, 2022
MAL-2023-113

Malicious code in audit-vue (npm)

Published Jun 15, 2023
MAL-2022-6538

Malicious code in textlint-checker-for-vuejs-jp-docs (npm)

Published Jun 20, 2022
MAL-2023-154

Malicious code in cache-vue (npm)

Published Jun 20, 2023
CVE-2024-52809

vue-i18n has cross-site scripting vulnerability with prototype pollution

Published Dec 2, 2024
MAL-2022-5780

Malicious code in rflktvuezgnypchw (npm)

Published Jul 11, 2022
MAL-2023-949

Malicious code in vue-plugin-preset (npm)

Published Jun 13, 2023
MAL-2025-191067

Malicious code in avvvatars-vue (npm)

Published Nov 24, 2025
MAL-2022-6993

Malicious code in vue-loader-v15 (npm)

Published Jun 20, 2022
MAL-2022-867

Malicious code in ado-vue (npm)

Published May 31, 2022
MAL-2023-947

Malicious code in vue-audit (npm)

Published Jun 19, 2023
MAL-2023-948

Malicious code in vue-gws (npm)

Published Jun 15, 2023
MAL-2025-191245

Malicious code in @lui-ui/lui-vue (npm)

Published Nov 24, 2025
MAL-2024-10865

Malicious code in ssc-org-vue (npm)

Published Nov 20, 2024
CVE-2020-11883MEDIUM

Diavante vue-storefront-api and storefront-api disclose stack trace

Published May 24, 2022
MAL-2022-6995

Malicious code in vue-style-gloder (npm)

Published Aug 19, 2022
MAL-2024-1310

Malicious code in vue2-amis-custom-widget-k (npm)

Published Apr 30, 2024
MAL-2024-11008

Malicious code in ssc-ui-vue-pro (npm)

Published Nov 27, 2024
MAL-2025-1098

Malicious code in cscropper-vue32 (npm)

Published Feb 3, 2025
MAL-2025-1266

Malicious code in vue-search-ui-demo (npm)

Published Feb 8, 2025
MAL-2024-8

Malicious code in @authentication-pages/vue-cli-prebuild (npm)

Published Jan 2, 2024
MAL-2024-9091

Malicious code in vue-assignment (npm)

Published Oct 4, 2024
MAL-2025-1166

Malicious code in paytm-blink-checkout-vue3-example (npm)

Published Feb 3, 2025
MAL-2025-1193

Malicious code in vue-plugin-rely-cs (npm)

Published Feb 3, 2025
MAL-2025-1194

Malicious code in vue-plugin-relyc (npm)

Published Feb 3, 2025
MAL-2022-1419

Malicious code in babelhelspevvuejsxmergeprops (npm)

Published Aug 19, 2022
MAL-2025-2432

Malicious code in vue-plugin-rely2 (npm)

Published Mar 14, 2025
MAL-2024-1550

Malicious code in vue2-webviews (npm)

Published Jun 7, 2024
MAL-2025-2479

Malicious code in you-test-vue5 (npm)

Published Mar 17, 2025
MAL-2025-2480

Malicious code in you-test-vue6 (npm)

Published Mar 17, 2025
MAL-2025-192421

Malicious code in vue2-amis-custom-widget123 (npm)

Published Dec 10, 2025
MAL-2025-258

Malicious code in vuepress-reading-time-extended (npm)

Published Jan 20, 2025
MAL-2023-951

Malicious code in vuewjs (npm)

Published Jun 13, 2023
MAL-2025-2718

Malicious code in vue-official-web (npm)

Published Mar 25, 2025
MAL-2025-4035

Malicious code in vue-bit (npm)

Published May 19, 2025
MAL-2025-4036

Malicious code in vue-dev-serverr (npm)

Published May 19, 2025
MAL-2025-1032

Malicious code in cms-vue-boilerplate (npm)

Published Feb 3, 2025
MAL-2022-4741

Malicious code in mvue-clss-compoment (npm)

Published Aug 19, 2022
CVE-2021-3794HIGH

Inefficient Regular Expression Complexity in vuelidate

Published Sep 20, 2021
MAL-2022-6999

Malicious code in vue3-babel-js (npm)

Published Jul 8, 2022
MAL-2022-7000

Malicious code in vue3-infinite-scroll (npm)

Published Jun 20, 2022
MAL-2022-7001

Malicious code in vuepress-theme-cloudlinux (npm)

Published Jun 20, 2022
MAL-2024-11229

Malicious code in calendervue (npm)

Published Dec 7, 2024
MAL-2025-192423

Malicious code in vue2-amis-custom-widget-pro (npm)

Published Dec 10, 2025
MAL-2022-123

Malicious code in @biz-vue/utils (npm)

Published Jul 22, 2022
MAL-2025-1165

Malicious code in paytm-blink-checkout-vue2-example (npm)

Published Feb 3, 2025
MAL-2025-3925

Malicious code in vue-gop-authenticate (npm)

Published May 16, 2025
MAL-2025-191228

Malicious code in @huntersofbook/auth-vue (npm)

Published Nov 25, 2025
MAL-2025-48769

Malicious code in vue-sfc-require-hook (npm)

Published Oct 26, 2025
MAL-2026-319

Malicious code in vue_frontend_rpc (npm)

Published Jan 16, 2026
MAL-2022-2178

Malicious code in cookie-banner-vue (npm)

Published Jun 20, 2022
MAL-2025-1096

Malicious code in cscount-vue3 (npm)

Published Feb 3, 2025
MAL-2025-1097

Malicious code in cscropper-vue3 (npm)

Published Feb 3, 2025
MAL-2025-48313

Malicious code in vue-analytics-plugin (npm)

Published Oct 10, 2025
MAL-2022-7003

Malicious code in vuez-template-compile (npm)

Published Aug 19, 2022
MAL-2025-4037

Malicious code in vue-dummyy (npm)

Published May 19, 2025
MAL-2025-4906

Malicious code in vue-coreo (npm)

Published Jun 10, 2025
MAL-2025-49410

Malicious code in frontend-vue-next (npm)

Published Nov 9, 2025
MAL-2022-6991

Malicious code in vue-docs-image-recognition (npm)

Published Jun 20, 2022
MAL-2022-2727

Malicious code in emerald-vue (npm)

Published Jun 20, 2022
MAL-2025-2138

Malicious code in vue-custom-widget-template1 (npm)

Published Mar 4, 2025
MAL-2025-2139

Malicious code in vue-integration (npm)

Published Mar 4, 2025
MAL-2022-6990

Malicious code in vue-dexpot-dk (npm)

Published Jun 20, 2022
MAL-2022-6998

Malicious code in vue2-wangwanqi (npm)

Published Nov 23, 2022
MAL-2022-7002

Malicious code in vuestic-admin (npm)

Published Jun 20, 2022
MAL-2022-6992

Malicious code in vue-loader-3 (npm)

Published Jun 20, 2022
CVE-2025-5897

@vue/cli-plugin-pwa Regular Expression Denial of Service vulnerability

Published Jun 9, 2025
MAL-2024-10695

Malicious code in babel-plugin-transform-vuex-analysis (npm)

Published Nov 14, 2024
MAL-2026-583

Malicious code in vuejavascript (npm)

Published Jan 28, 2026
MAL-2022-7398

Malicious code in zksync-zkwallet-vue (npm)

Published Aug 10, 2022
MAL-2026-577

Malicious code in transform-vue-jsx (npm)

Published Jan 28, 2026
MAL-2024-10809

Malicious code in seller-vuex-report-plugin (npm)

Published Nov 16, 2024
MAL-2022-669

Malicious code in @trimoz/trimoz-vue-error-handling (npm)

Published Sep 26, 2022
MAL-2025-1101

Malicious code in csquill-vue3 (npm)

Published Feb 3, 2025
MAL-2025-1102

Malicious code in csvue-unplugin (npm)

Published Feb 3, 2025
MAL-2025-3124

Malicious code in twc-app-example-vue (npm)

Published Apr 3, 2025
MAL-2025-191301

Malicious code in @productdevbook/animejs-vue (npm)

Published Nov 25, 2025
MAL-2025-1099

Malicious code in cscvue-unplugin (npm)

Published Feb 3, 2025
MAL-2025-1100

Malicious code in csmagnifier-vue3 (npm)

Published Feb 3, 2025
MAL-2023-1041

Malicious code in vue-router-vue3 (npm)

Published Aug 1, 2023
MAL-2022-1601

Malicious code in biz-vue-communications (npm)

Published Jun 20, 2022
MAL-2026-263

Malicious code in @spx-workforceops/shared-vue (npm)

Published Jan 16, 2026
MAL-2024-11105

Malicious code in ssc-ui-vue (npm)

Published Nov 27, 2024
MAL-2022-7103

Malicious code in webpack-vue-config (npm)

Published Jun 20, 2022
MAL-2024-1549

Malicious code in vue-webviews (npm)

Published Jun 7, 2024
MAL-2025-192590

Malicious code in example-vue2-micro (npm)

Published Dec 16, 2025
MAL-2022-441

Malicious code in @msmg/vue-merge-data-qa (npm)

Published Jun 20, 2022
MAL-2023-588

Malicious code in meetingsdk-sample-vuejs (npm)

Published Jul 4, 2023
MAL-2025-2117

Malicious code in my-custom-vue-widget (npm)

Published Mar 4, 2025
MAL-2023-65

Malicious code in @superbet-group/web.lib.vue-utilities (npm)

Published Feb 9, 2023
MAL-2023-737

Malicious code in react-vuejs (npm)

Published May 22, 2023
MAL-2022-3998

Malicious code in izhvuecdkrowmyat (npm)

Published Jul 11, 2022
MAL-2022-2959

Malicious code in fabric-vue (npm)

Published Jun 20, 2022
MAL-2025-3125

Malicious code in vue-device-momo (npm)

Published Apr 3, 2025
MAL-2025-48310

Malicious code in vite-plugin-vue-layout (npm)

Published Oct 10, 2025
MAL-2025-1086

Malicious code in cs-icons-vue3 (npm)

Published Feb 3, 2025
MAL-2022-6164

Malicious code in slg-vue-components (npm)

Published Jun 22, 2022
MAL-2022-932

Malicious code in alias-for-vue3 (npm)

Published Sep 26, 2022
MAL-2023-950

Malicious code in vue2ejs (npm)

Published May 17, 2023
MAL-2026-425

Malicious code in plugin-vue (npm)

Published Jan 21, 2026
MAL-2026-524

Malicious code in mapkit-example-vue (npm)

Published Jan 27, 2026
MAL-2022-4015

Malicious code in jessa-vue-components (npm)

Published Jun 20, 2022
MAL-2024-11190

Malicious code in vue-midata (npm)

Published Dec 4, 2024
MAL-2024-1166

Malicious code in vue2util (npm)

Published Apr 1, 2024
MAL-2024-12132

Malicious code in zoomapps-texteditor-vuejs (npm)

Published Dec 26, 2024
MAL-2025-191125

Malicious code in lui-vue-test (npm)

Published Nov 24, 2025
MAL-2025-191448

Malicious code in vue-browserupdate-nuxt (npm)

Published Nov 24, 2025
MAL-2025-2431

Malicious code in vue-plugin-rely1 (npm)

Published Mar 14, 2025
MAL-2025-2481

Malicious code in you-test-vue7 (npm)

Published Mar 17, 2025
MAL-2025-257

Malicious code in vue-loader-vue3 (npm)

Published Jan 20, 2025
MAL-2025-4290

Malicious code in vue-vibe (npm)

Published May 22, 2025
MAL-2025-1091

Malicious code in cs-templates-vue3 (npm)

Published Feb 3, 2025
MAL-2025-1093

Malicious code in csbvue-unplugin (npm)

Published Feb 3, 2025
MAL-2026-1555

Malicious code in typescript-vue-apollo-smart-ops (npm)

Published Mar 16, 2026
MAL-2023-435

Malicious code in fe-core-components-vuejs (npm)

Published Feb 20, 2023
MAL-2025-4827

Malicious code in eslint-parser-vue (npm)

Published Jun 10, 2025
MAL-2022-6989

Malicious code in vue-cumulio-dashboard (npm)

Published Jun 20, 2022
MAL-2025-2478

Malicious code in you-test-test-vue (npm)

Published Mar 17, 2025
MAL-2026-1538

Malicious code in vue-scoped-css (npm)

Published Mar 16, 2026
MAL-2026-262

Malicious code in @spx-smartsorting/vue (npm)

Published Jan 16, 2026
MAL-2025-3655

Malicious code in vue-highcharts-official (npm)

Published May 6, 2025
MAL-2025-3656

Malicious code in vue-ssr-devtools (npm)

Published May 6, 2025
MAL-2026-260

Malicious code in @servicepoint/vue-project (npm)

Published Jan 16, 2026
MAL-2025-4976

Malicious code in client-vue3-dev (npm)

Published Jun 15, 2025
MAL-2026-270

Malicious code in base-ui-vue3 (npm)

Published Jan 16, 2026
Check your entire dependency tree at onceRun dependency scan →