Skip to content
/ Vulnerable-VueJS Public

A repository to study attack surface of VueJS. Many articles online talked about VueJS vulnerabilities in lengthy and wordly sentences with little example codes. Here, I aim to provide short and simple PoC codes for educational purpose.

0 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

HLOverflow/Vulnerable-VueJS

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
clientside-vulns
clientside-vulns
 
 
README.md
README.md
 
 

Repository files navigation

Vulnerable-VueJS

This is a repository to study attack surface of VueJS.

Many articles online talked about VueJS vulnerabilities in lengthy and wordly sentences with little example codes. Here, I aim to provide short and simple PoC codes for educational purpose.

Client-Side Vulnerabilities

All the PoCs documented here only require a browser.

  1. Cross-Side Scripting (XSS)
  2. Client-side Template Injection (CSTI)
  3. URL Injection / Open Redirect
  4. Style Injection

Server-side Vulnerabilities

Oops! VueJS is client-side front end language!

References:

About

A repository to study attack surface of VueJS. Many articles online talked about VueJS vulnerabilities in lengthy and wordly sentences with little example codes. Here, I aim to provide short and simple PoC codes for educational purpose.

Topics

vuejs vue

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages