nuxt-og-image

npm3 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting nuxt-og-imagepage 1 of 1

CVE-2026-34404HIGHCVSS 7.5EG 7.5✓ Fixed in 6.2.5
2026-03-31
Nuxt OG Image generates OG Images with Vue templates in Nuxt. Prior to version 6.2.5, the image‑generation component by the URI: /_og/d/ (and, in older versions, /og-image/) contains a Denial of Service (DoS) vulnerability. The issue ari…
CVE-2026-34405MEDIUMCVSS 6.1EG 6.1✓ Fixed in 6.2.5
2026-03-31
Nuxt OG Image generates OG Images with Vue templates in Nuxt. Prior to version 6.2.5, the image‑generation component by the URI: /_og/d/ (and, in older versions, /og-image/) contains a vulnerability that allows injection of arbitrary att…
CVE-2026-44589LOWCVSS 3.7EG 3.7✓ Fixed in 6.4.9
2026-05-14
Nuxt OG Image generates OG Images with Vue templates in Nuxt. The isBlockedUrl() denylist introduced in nuxt-og-image@6.2.5 to remediate GHSA-pqhr-mp3f-hrpp (Dmitry Prokhorov / Positive Technologies, March 2026) is incomplete. It has an in…

Check whether nuxt-og-image is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for nuxt-og-image CVEs against the assets you own.

Start Free Scan →