@nuxtlabs/github-module is vulnerable to Token Disclosure. The vulnerability exists in the module.ts
because it uses hard-coded credentials in the config file, which allows an attacker to gain sensitive information through the token in the public runtime config.
CPE | Name | Operator | Version |
---|---|---|---|
@nuxtlabs/github-module | le | 1.6.1 | |
@nuxtlabs/github-module | le | 1.6.1 |