Package impact
NPM / @nuxt/nitro-server
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-46342 | low | — | 2.5 | 9d ago | Nuxt: `__nuxt_island` endpoint does not bind responses to request props, enabling shared-cache poisoning |
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-46342 | low | — | 2.5 | 9d ago | Nuxt: `__nuxt_island` endpoint does not bind responses to request props, enabling shared-cache poisoning |