CNNVD-202512-2324 Information
Dec 12, 2025
cve
CNNVD ID
CNNVD-202512-2324
Related CVE
- CNNVD Published: 2025-12-12
Description (Chinese)
vuetify是德国vuetify开源的一个 Vue 的材质组件框架。 Vuetify 2.0.0版本至3.0.0之前版本存在安全漏洞,该漏洞源于VDatePicker组件存在跨站脚本,可能导致注入未清理HTML。
Description (English)
vuetefy is a material assembly framework for Vue, an open source for vuetefy in Germany. There was a security gap between Vuitify version 2.0.0 and previous version 3.0.0, which stemmed from the presence of a cross-site script for the VDatePicker component, which could result in the injection of uncleaned HTML.
Hazard Level
High
Vulnerability Type
其他
Published
2025-12-12
Last Modified
2026-02-24
References
https://codepen.io/herodevs/pen/dPYGPyR/775285c0fd5a08038d4c85398815d644 https://www.herodevs.com/vulnerability-directory/cve-2025-8082
Patch
https://vuetifyjs.com/getting-started/upgrade-guide/
Share on: