CVE-2025-59414 | Nuxt up to 3.18.x/4.0.x on Vue API Endpoint path traversal (GHSA-p6jq-8vc4-79f6)

A vulnerability has been found in Nuxt up to 3.18.x/4.0.x on Vue and classified as critical. Impacted is an unknown function of the component API Endpoint. Performing manipulation results in path traversal.

This vulnerability is reported as CVE-2025-59414. The attack is possible to be carried out remotely. No exploit exists.

The affected component should be upgraded.VulDB Recent EntriesRead More