CVE-2022-0355
CVE-2022-0355 affects the Node.js package simple-get (versions earlier than 4.0.1). The root cause is improper handling of sensitive data before storage or transfer, allowing exposure of session cookies when fetching remote URLs. Impact can include session hijacking or unauthorized access, depend...