Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:33726
HistoryJan 17, 2022 - 9:09 a.m.

Information Disclosure

2022-01-1709:09:26
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
23
node-fetch
vulnerability
information disclosure
cookie header
third party site
sensitive information
attacker
access

EPSS

0.004

Percentile

73.2%

node-fetch is vulnerable to information disclosure. The vulnerability exists due to the cookie header being leaked to third party site which allows an attacker to gain access to sensitive information.