Element-plus Element-plus

2 CVEs affecting Element-plus Element-plus. Latest disclosed: 2025-09-09. Critical: 0, High: 0.

Top CVEs affecting Element-plus Element-plus
CVESeverityScorePublishedSummary
CVE-2025-57665Medium6.42025-09-09Element Plus Link component (el-link) through 2.10.6 implements insufficient input validation for the href attribute, creating a security abstraction gap that…
CVE-2022-27103Medium6.12022-04-25element-plus 2.0.5 is vulnerable to Cross Site Scripting (XSS) via el-table-column.