Title: Cx68e4da20-b53a @ Npm-ua-parser-js-0.7.29 · Issue #49 · DefenderForCodeOrg/msft · GitHub
Open Graph Title: Cx68e4da20-b53a @ Npm-ua-parser-js-0.7.29 · Issue #49 · DefenderForCodeOrg/msft
X Title: Cx68e4da20-b53a @ Npm-ua-parser-js-0.7.29 · Issue #49 · DefenderForCodeOrg/msft
Description: Vulnerable Package issue exists @ Npm-ua-parser-js-0.7.29 in branch main This package exfiltrates stored credentials and sensitive information About Data exfiltration may be done in numerous ways such as through HTTP requests, DNS tunnel...
Open Graph Description: Vulnerable Package issue exists @ Npm-ua-parser-js-0.7.29 in branch main This package exfiltrates stored credentials and sensitive information About Data exfiltration may be done in numerous ways s...
X Description: Vulnerable Package issue exists @ Npm-ua-parser-js-0.7.29 in branch main This package exfiltrates stored credentials and sensitive information About Data exfiltration may be done in numerous ways s...
Opengraph URL: https://github.com/DefenderForCodeOrg/msft/issues/49
X: @github
Domain: github.com
{"@context":"https://schema.org","@type":"DiscussionForumPosting","headline":"Cx68e4da20-b53a @ Npm-ua-parser-js-0.7.29","articleBody":"**Vulnerable Package** issue exists @ **Npm\\-ua\\-parser\\-js\\-0\\.7\\.29** in branch **main**\r\n\r\nThis package exfiltrates stored credentials and sensitive information\n### About\n\nData exfiltration may be done in numerous ways such as through HTTP requests, DNS tunneling, various webhooks and more. It is common by attackers to try to exfiltrate sensitive information such as:\n- Credentials\n- Environment variables\n- SSH keys\n- Authentication tokens\n- Computer and operating system information\n- Network settings\n\n\r\n\r\n**Namespace:** James-AST\r\n**Repository:** msft\r\n**Repository Url:** https://github.com/James-AST/msft\r\n**CxAST\\-Project:** James-AST/msft\r\n**CxAST platform scan:** [d217bf9e\\-499c\\-4ae8\\-a115\\-08b6cd62b182](https://ast.checkmarx.net/projects/fada48c7-0c49-472a-994a-763d8a847895/scans?id=d217bf9e-499c-4ae8-a115-08b6cd62b182\u0026branch=main)\r\n**Branch:** main\r\n**Application:** msft\r\n**Severity:** HIGH\r\n**State:** NOT_IGNORED\r\n**Status:** RECURRENT\r\n**CWE:** Data Exfiltration\r\n\r\n\r\n----\r\n**Addition Info**\r\n","author":{"url":"https://github.com/jbrotsos","@type":"Person","name":"jbrotsos"},"datePublished":"2022-06-16T16:40:03.000Z","interactionStatistic":{"@type":"InteractionCounter","interactionType":"https://schema.org/CommentAction","userInteractionCount":0},"url":"https://github.com/49/msft/issues/49"}
| route-pattern | /_view_fragments/issues/show/:user_id/:repository/:id/issue_layout(.:format) |
| route-controller | voltron_issues_fragments |
| route-action | issue_layout |
| fetch-nonce | v2:2a04cef1-dcca-e9a9-133c-03114d53b960 |
| current-catalog-service-hash | 81bb79d38c15960b92d99bca9288a9108c7a47b18f2423d0f6438c5b7bcd2114 |
| request-id | E504:1E1ACC:1781795:1F9B71F:6A5B99EE |
| html-safe-nonce | 5093e1e5cdad053b64e4e17a1dd1c153dc2fe9fae1af61147d3747a5986eabc5 |
| visitor-payload | eyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiJFNTA0OjFFMUFDQzoxNzgxNzk1OjFGOUI3MUY6NkE1Qjk5RUUiLCJ2aXNpdG9yX2lkIjoiODc5Mzg3NTMwMDQ0OTIyOTI5NCIsInJlZ2lvbl9lZGdlIjoiaWFkIiwicmVnaW9uX3JlbmRlciI6ImlhZCJ9 |
| visitor-hmac | 005e5aba0f694099648e33e1953efd60fd6c915deec7d0aa40530bb4b0abda07 |
| hovercard-subject-tag | issue:1273823075 |
| github-keyboard-shortcuts | repository,issues,copilot |
| google-site-verification | Apib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I |
| octolytics-url | https://collector.github.com/github/collect |
| analytics-location | / |
| fb:app_id | 1401488693436528 |
| apple-itunes-app | app-id=1477376905, app-argument=https://github.com/_view_fragments/issues/show/DefenderForCodeOrg/msft/49/issue_layout |
| twitter:image | https://opengraph.githubassets.com/e1f6df002a699bb7162349100aaeacd03844590a20f441e4401e74ef875c1560/DefenderForCodeOrg/msft/issues/49 |
| twitter:card | summary_large_image |
| og:image | https://opengraph.githubassets.com/e1f6df002a699bb7162349100aaeacd03844590a20f441e4401e74ef875c1560/DefenderForCodeOrg/msft/issues/49 |
| og:image:alt | Vulnerable Package issue exists @ Npm-ua-parser-js-0.7.29 in branch main This package exfiltrates stored credentials and sensitive information About Data exfiltration may be done in numerous ways s... |
| og:image:width | 1200 |
| og:image:height | 600 |
| og:site_name | GitHub |
| og:type | object |
| og:author:username | jbrotsos |
| hostname | github.com |
| expected-hostname | github.com |
| None | 5290d7e14309ad1e76106a9c4237bd1041517e83ea182c8ab756752cb0c6940b |
| turbo-cache-control | no-preview |
| go-import | github.com/DefenderForCodeOrg/msft git https://github.com/DefenderForCodeOrg/msft.git |
| octolytics-dimension-user_id | 83890223 |
| octolytics-dimension-user_login | DefenderForCodeOrg |
| octolytics-dimension-repository_id | 504225335 |
| octolytics-dimension-repository_nwo | DefenderForCodeOrg/msft |
| octolytics-dimension-repository_public | true |
| octolytics-dimension-repository_is_fork | false |
| octolytics-dimension-repository_network_root_id | 504225335 |
| octolytics-dimension-repository_network_root_nwo | DefenderForCodeOrg/msft |
| turbo-body-classes | logged-out env-production page-responsive |
| disable-turbo | false |
| browser-stats-url | https://api.github.com/_private/browser/stats |
| browser-errors-url | https://api.github.com/_private/browser/errors |
| release | 9c975978430e9ad293956f2bbdaf153b1bd84a99 |
| ui-target | full |
| theme-color | #1e2327 |
| color-scheme | light dark |
Links:
Viewport: width=device-width