2 matches found
GHSA-VQVC-9Q8X-VMQ6 The AuthKit React Router Library rendered sensitive auth data in HTML
In versions before 0.7.0, @workos-inc/authkit-react-router exposed sensitive authentication artifacts — specifically sealedSession and accessToken by returning them from the authkitLoader. This caused them to be rendered into the browser HTML. Impact This information disclosure could lead to...
Unspecified vulnerability in Http-proxy
Http-proxy is a full-featured HTTP proxy for Node.js. A security vulnerability exists in Http-proxy versions prior to 0.7.0. An attacker can exploit this vulnerability to cause a denial of service server crash...