Possibly Related Threads…

HA_twck · 07-24-2024, 03:46 AM

It is found inside of the in-browser Vue template compiler which is shipped inside the “full build” of Vue. The in-browser Vue template compiler is responsible for creating a string of code to be executed so that component templates like “<div>{{ variables }}</div>” can be parsed and turned into render functions. These render functions are then executed by Vue when it evaluates the render functions within a stringified eval statement, thus allowing a third-party script to run arbitrary code.

CVE:CVE-2024-6783
Affected: vue-template-compiler>= 2.0.0 < 3.0.0 on Vue 2
Critical: Medium-severity level

POC:

Hidden Content

You must register or login to view this content.

PS: I dont own source; only sharing for those who need.

qian30090 · 08-17-2024, 07:09 AM

Thanks, I'll see what's going on.

lolobob11 · 12-14-2024, 01:54 PM

thanksssssss for sharing

salv · 12-15-2024, 06:51 PM

An update for openssl is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate.

takahash1 · 03-28-2025, 11:07 AM

thanks for sharing, let me check it out

adler · 03-28-2025, 06:29 PM

tnxxxxx for sharing, let me check it out

Possibly Related Threads…
Thread		Author	Replies	Views	Last Post
	CVE-2025-40554 - SolarWinds Web Help Desk Auth Bypass & RCE PoC	miyako	3	75	02-07-2026, 03:32 PM Last Post: cysc
	POC CVE-2025-24071	caca28sapo1	15	808	02-07-2026, 08:53 AM Last Post: hacker0123
	HPE OneView RCE Exploit [CVE-2025-37164]	Hawx01	8	263	02-06-2026, 07:08 PM Last Post: hacker0123
	CitrixBleed / CVE-2023-4966	cccp	10	6,799	02-06-2026, 01:36 AM Last Post: temptest
	WordPress LFI to RCE - CVE-2025-0366	Serious	1	459	02-05-2026, 09:53 AM Last Post: Sammm89