@strapi/utils Security Advisories - Npm | Ecosyste.ms: Advisories

@strapi/utils

Shared utilities for the Strapi packages

View on github.com · View on npmjs.org

Security Advisories for @strapi/utils in npm

Moderate

about 2 years ago

Strapi may leak sensitive user information, user reset password, tokens via content-manager views GSA_kwCzR0hTQS12OGdnLTRtcTItODhxNM4AA12r

npm @strapi/utils, @strapi/admin, @strapi/plugin-content-manager

High

over 2 years ago

Leaking sensitive user information still possible by filtering on private with prefix fields GSA_kwCzR0hTQS05eGc0LTNxZm0tOXc4Zs4AA04c

npm @strapi/utils, @strapi/database

Moderate

over 2 years ago

Making all attributes on a content-type public without noticing it GSA_kwCzR0hTQS1jaG1yLXJnMmYtOWptZs4AA04b

npm @strapi/database, @strapi/utils, @strapi/strapi

Filter by Severity

Moderate 2 High 1