CVE-2026-56317
Last modified
CVE-2026-56317 is a low-severity vulnerability rated 2.3/10 on the CVSS scale. Nuxt before 4.4.7 (and the 3.x branch before 3.21.7) contains a cross-site scripting vulnerability in the NoScript component that writes slot content to innerHTML without escaping. Attackers can inject malicious scripts through untrusted data in NoScript slots, such as route.query parameters, which execute in the document context when the noscript tag is implicitly closed by script tags.. EPSS estimates a 0.21% chance of exploitation in the next 30 days.
Description
Nuxt before 4.4.7 (and the 3.x branch before 3.21.7) contains a cross-site scripting vulnerability in the NoScript component that writes slot content to innerHTML without escaping. Attackers can inject malicious scripts through untrusted data in NoScript slots, such as route.query parameters, which execute in the document context when the noscript tag is implicitly closed by script tags.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Nuxt | Nuxt | < 3.21.7 |
| Nuxt | Nuxt | >= 4.0.0, < 4.4.7 |
References
- https://github.com/nuxt/nuxt/security/advisories/GHSA-m3q2-p4fw-w38mMitigation, Patch, Vendor Advisory
- https://www.vulncheck.com/advisories/nuxt-cross-site-scripting-via-noscript-component-slot-contentPatch, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Analyzed
Frequently Asked Questions
What is CVE-2026-56317?
How severe is CVE-2026-56317?
How do I fix CVE-2026-56317?
Are you affected by CVE-2026-56317?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST