Description
Improper Removal of Sensitive Information Before Storage or Transfer in NPM simple-get prior to 4.0.1.
Remediation
References
https://github.com/feross/simple-get/commit/e4af095e06cd69a9235013e8507e220a79b9684f
https://huntr.dev/bounties/42c79c23-6646-46c4-871d-219c0d4b4e31
https://github.com/advisories/GHSA-wpg7-2c88-r8xv
Related Vulnerabilities
CVE-2021-23484 Vulnerability in npm package zip-local
CVE-2021-3632 Vulnerability in maven package org.keycloak:keycloak-core
CVE-2020-15126 Vulnerability in npm package parse-server
CVE-2020-28462 Vulnerability in npm package ion-parser
CVE-2023-31544 Vulnerability in maven package org.opencms:opencms-core