Releases711
Frequency5 days 3 hours
Last Release
Vue Material Component Framework

CVE History

CVEAffectedPublishedCVSS v3CVSS v2
>= 2.0.1, < 2.6.10, = 2.0.04.6 MEDIUM

The package vuetify from 2.0.0-beta.4 and before 2.6.10 are vulnerable to Cross-site Scripting (XSS) due to improper input sanitization in the 'eventName' function within the VCalendar component.