Description
When fetching a remote url with Cookie if it get Location response header then it will follow that url and try to fetch that url with provided cookie . So cookie is leaked here to thirdparty. Ex: you try to fetch example.com with cookie and if it get redirect url to attacker.com then it fetch that redirect url with provided cookie .
Recommendation
Update the cross-fetch package to the latest compatible version. Followings are version details:
Affected version(s): **< 2.2.6 >= 3.0.0, < 3.1.5** Patched version(s): **2.2.6 3.1.5**
References
Related Issues
- Incorrect Authorization in @uppy/companion - CVE-2022-0528
- Undici proxy-authorization header not cleared on cross-origin redirect in fetch - CVE-2024-24758
- Cross-site Scripting in Prism - CVE-2022-23647
- Cross site scripting in reveal.js - CVE-2022-0776
- Tags:
- npm
- cross-fetch
Anything's wrong? Let us know Last updated on January 27, 2023