CVE-2023-2138
CVE-2023-2138 affects nuxtlabs/github-module prior to version 1.6.2. The root cause is a hard-coded GitHub token embedded in the module’s source, which granted access to multiple Nuxt-related GitHub repositories. The issue is described consistently across multiple sources (including Red Hat, GitH...