Описание
node-etsy-client is a NodeJs Etsy ReST API Client. Applications that are using node-etsy-client and reporting client error to the end user will offer api key value too This is fixed in node-etsy-client v0.3.0 and later.
Ссылки
- PatchThird Party Advisory
- Third Party Advisory
- PatchThird Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 0.3.0 (включая)
cpe:2.3:a:node-etsy-client_project:node-etsy-client:*:*:*:*:*:node.js:*:*
EPSS
Процентиль: 66%
0.00522
Низкий
8.1 High
CVSS3
6.5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-200
CWE-209
Связанные уязвимости
CVSS3: 8.1
github
больше 4 лет назад
ApiKey secret could be revelated on network issue
EPSS
Процентиль: 66%
0.00522
Низкий
8.1 High
CVSS3
6.5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-200
CWE-209