All 3 CVE vulnerabilities found in og-image, with AI-generated Chinese analysis, references, and POCs.
Vendor: nuxt-modules
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-44589 | nuxt-og-image SSRF — bypass of GHSA-pqhr-mp3f-hrpp / v6.2.5 fix (IPv6 + redirect) CWE-918 | 3.7 | Low | 2026-05-14 |
| CVE-2026-34405 | Nuxt OG Image vulnerable to reflected XSS via query parameter injection into HTML attributes CWE-79 | 6.1 | Medium | 2026-03-31 |
| CVE-2026-34404 | Nuxt OG Image vulnerable to DoS via image generation CWE-400 | 7.5 | - | 2026-03-31 |
All 3 known CVE vulnerabilities affecting og-image with full Chinese analysis, references, and POCs where available.