Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
Nuxt.js Running in Development Mode - Vulnerability Database

Nuxt.js Running in Development Mode

Description

The Nuxt.js application is running in development mode on your production server. In the development mode, Nuxt.js includes detailed error messages, stack traces, and other debug information that can help attackers understand the inner workings of your application and design attacks more effectively.

In order to minimize the security risk, you should ensure that your Nuxt.js application is running in production mode when deployed to a live environment.

Remediation

Ensure that your Nuxt.js application is running in production mode when deployed to a live environment. This can be achieved by setting the <b>NODE_ENV</b> environment variable to <b>production</b> in your deployment scripts, or by programmatically setting the <b>dev</b> property to <b>false</b> in your Nuxt configuration file in the production environment.

References

The dev property

Related Vulnerabilities

Trace.axd Detected High
Common tags: Configuration Information Disclosure
Laravel LogViewer open Medium
Common tags: Configuration Information Disclosure
The Heartbleed Bug High
Common tags: Configuration Information Disclosure
Multiple vulnerabilities in Ioncube loader-wizard.php High
Common tags: Configuration Information Disclosure
Microsoft Frontpage configuration information Information
Common tags: Configuration Information Disclosure

Severity

Low

Classification

CWE-200
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

Tags

Configuration
Information Disclosure