Vulnerable Package issue exists @ Npm-node-fetch-1.7.3 in branch master
node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor in versions prior to 2.6.7, 3.0.x prior to 3.1.1.
Namespace: Abdul1110
Repository: TEST_ORION
Repository Url: https://github.com/Abdul1110/TEST_ORION
CxAST-Project: Abdul1110/TEST_ORION
CxAST platform scan: 19490220-b272-4b92-94fa-50af22248f60
Branch: master
Application: TEST_ORION
Severity: MEDIUM
State: NOT_IGNORED
Status: RECURRENT
CWE: CWE-601
Addition Info
Attack vector: NETWORK
Attack complexity: LOW
Confidentiality impact: LOW
Availability impact: NONE
Remediation Upgrade Recommendation: 2.6.7
References
Advisory
Release Note
Release Note
Commit
Disclosure
Pull request
Issue
Vulnerable Package issue exists @ Npm-node-fetch-1.7.3 in branch master
node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor in versions prior to 2.6.7, 3.0.x prior to 3.1.1.
Namespace: Abdul1110
Repository: TEST_ORION
Repository Url: https://github.com/Abdul1110/TEST_ORION
CxAST-Project: Abdul1110/TEST_ORION
CxAST platform scan: 19490220-b272-4b92-94fa-50af22248f60
Branch: master
Application: TEST_ORION
Severity: MEDIUM
State: NOT_IGNORED
Status: RECURRENT
CWE: CWE-601
Addition Info
Attack vector: NETWORK
Attack complexity: LOW
Confidentiality impact: LOW
Availability impact: NONE
Remediation Upgrade Recommendation: 2.6.7
References
Advisory
Release Note
Release Note
Commit
Disclosure
Pull request
Issue