Description
Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository ionicabizau/parse-url prior to 7.0.0.
Remediation
References
https://github.com/ionicabizau/parse-url/commit/21c72ab9412228eea753e2abc48f8962707b1fe3
https://huntr.dev/bounties/2490ef6d-5577-4714-a4dd-9608251b4226
Related Vulnerabilities
CVE-2021-21342 Vulnerability in maven package com.thoughtworks.xstream:xstream
CVE-2014-7191 Vulnerability in maven package org.webjars:qs
CVE-2022-1243 Vulnerability in maven package org.webjars.bower:urijs
CVE-2017-16129 Vulnerability in maven package org.webjars.npm:superagent
CVE-2022-24697 Vulnerability in maven package org.apache.kylin:kylin-spark-engine