ApiKey secret could be revelated on network issue

Impact What kind of vulnerability is it? Who is impacted? Applications that are using node-etsy-client and reporting client error to the end user will offer api key value too Patches Has the problem been patched? What versions should users upgrade to? creharmony/node-etsy-client18 fixes this issu...

GHSA-XW22-WV29-3299 ApiKey secret could be revelated on network issue

Impact What kind of vulnerability is it? Who is impacted? Applications that are using node-etsy-client and reporting client error to the end user will offer api key value too Patches Has the problem been patched? What versions should users upgrade to? creharmony/node-etsy-client18 fixes this issu...

Information Disclosure

node-etsy-client is vulnerable to information disclosure. It leaks api key value secret through client error reports...

CVE-2021-21421

CVE-2021-21421 affects the node-etsy-client (Node.js Etsy REST API client). The issue is that applications reporting client errors to end users could leak the API key value in error output. The root cause is tied to how error information is exposed to end users. Mitigation is to upgrade to node-e...

PT-2021-14494 · Npm · Node-Etsy-Client

Name of the Vulnerable Software and Affected Versions: node-etsy-client versions prior to 0.3.0 Description: The issue affects applications using node-etsy-client, where client error reports to end users may inadvertently expose API key values. Recommendations: For versions prior to 0.3.0, update...

GitHub node-etsy-client 信息泄露漏洞

GitHub node-etsy-client is a GitHub open source application. nodeJs Etsy ReST API client. A security vulnerability exists in node-etsy-client that stems from a reported client-side error will also provide the api key value...