In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsLearn about Remote Code Execution (RCE) vulnerabilities in an interactive lesson.
Start learningUpgrade @vue/cli
to version 4.5.14, 5.0.0-beta.6 or higher.
@vue/cli is a Command line interface for rapid Vue.js development
Affected versions of this package are vulnerable to Remote Code Execution (RCE) on the user’s machine via Cross-Site WebSocket Hijacking.
Note: This vulnerability is exploitable only if the user explicitly exposes their Vue CLI UI server to the public network via the command vue ui -H 0.0.0.0
.