Vulnerabilities

1 via 54 paths

Dependencies

409

Source

npm

Find, fix and prevent vulnerabilities in your code.

Severity
  • 1
Status
  • 1
  • 0
  • 0

high severity
new

Information Exposure

  • Vulnerable module: simple-get
  • Introduced through: @theia/core@1.22.0, @theia/editor@1.22.0 and others

Detailed paths

  • Introduced through: @theia/preferences@1.22.0 @theia/core@1.22.0 drivelist@9.2.4 prebuild-install@5.3.6 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/core@1.22.0 keytar@7.2.0 prebuild-install@6.1.4 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/editor@1.22.0 @theia/core@1.22.0 drivelist@9.2.4 prebuild-install@5.3.6 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/filesystem@1.22.0 @theia/core@1.22.0 drivelist@9.2.4 prebuild-install@5.3.6 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/workspace@1.22.0 @theia/core@1.22.0 drivelist@9.2.4 prebuild-install@5.3.6 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/core@1.22.0 drivelist@9.2.4 prebuild-install@5.3.6 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/userstorage@1.22.0 @theia/core@1.22.0 drivelist@9.2.4 prebuild-install@5.3.6 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/editor@1.22.0 @theia/core@1.22.0 keytar@7.2.0 prebuild-install@6.1.4 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/filesystem@1.22.0 @theia/core@1.22.0 keytar@7.2.0 prebuild-install@6.1.4 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/workspace@1.22.0 @theia/core@1.22.0 keytar@7.2.0 prebuild-install@6.1.4 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/core@1.22.0 keytar@7.2.0 prebuild-install@6.1.4 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/userstorage@1.22.0 @theia/core@1.22.0 keytar@7.2.0 prebuild-install@6.1.4 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/editor@1.22.0 @theia/variable-resolver@1.22.0 @theia/core@1.22.0 drivelist@9.2.4 prebuild-install@5.3.6 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/workspace@1.22.0 @theia/variable-resolver@1.22.0 @theia/core@1.22.0 drivelist@9.2.4 prebuild-install@5.3.6 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/editor@1.22.0 @theia/core@1.22.0 drivelist@9.2.4 prebuild-install@5.3.6 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/workspace@1.22.0 @theia/filesystem@1.22.0 @theia/core@1.22.0 drivelist@9.2.4 prebuild-install@5.3.6 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/filesystem@1.22.0 @theia/core@1.22.0 drivelist@9.2.4 prebuild-install@5.3.6 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/userstorage@1.22.0 @theia/filesystem@1.22.0 @theia/core@1.22.0 drivelist@9.2.4 prebuild-install@5.3.6 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/workspace@1.22.0 @theia/core@1.22.0 drivelist@9.2.4 prebuild-install@5.3.6 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/markers@1.22.0 @theia/core@1.22.0 drivelist@9.2.4 prebuild-install@5.3.6 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/outline-view@1.22.0 @theia/core@1.22.0 drivelist@9.2.4 prebuild-install@5.3.6 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/editor@1.22.0 @theia/variable-resolver@1.22.0 @theia/core@1.22.0 keytar@7.2.0 prebuild-install@6.1.4 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/workspace@1.22.0 @theia/variable-resolver@1.22.0 @theia/core@1.22.0 keytar@7.2.0 prebuild-install@6.1.4 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/editor@1.22.0 @theia/core@1.22.0 keytar@7.2.0 prebuild-install@6.1.4 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/workspace@1.22.0 @theia/filesystem@1.22.0 @theia/core@1.22.0 keytar@7.2.0 prebuild-install@6.1.4 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/filesystem@1.22.0 @theia/core@1.22.0 keytar@7.2.0 prebuild-install@6.1.4 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/userstorage@1.22.0 @theia/filesystem@1.22.0 @theia/core@1.22.0 keytar@7.2.0 prebuild-install@6.1.4 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/workspace@1.22.0 @theia/core@1.22.0 keytar@7.2.0 prebuild-install@6.1.4 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/markers@1.22.0 @theia/core@1.22.0 keytar@7.2.0 prebuild-install@6.1.4 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/outline-view@1.22.0 @theia/core@1.22.0 keytar@7.2.0 prebuild-install@6.1.4 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/editor@1.22.0 @theia/variable-resolver@1.22.0 @theia/core@1.22.0 drivelist@9.2.4 prebuild-install@5.3.6 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/workspace@1.22.0 @theia/variable-resolver@1.22.0 @theia/core@1.22.0 drivelist@9.2.4 prebuild-install@5.3.6 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/workspace@1.22.0 @theia/filesystem@1.22.0 @theia/core@1.22.0 drivelist@9.2.4 prebuild-install@5.3.6 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/markers@1.22.0 @theia/filesystem@1.22.0 @theia/core@1.22.0 drivelist@9.2.4 prebuild-install@5.3.6 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/markers@1.22.0 @theia/workspace@1.22.0 @theia/core@1.22.0 drivelist@9.2.4 prebuild-install@5.3.6 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/markers@1.22.0 @theia/navigator@1.22.0 @theia/core@1.22.0 drivelist@9.2.4 prebuild-install@5.3.6 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/editor@1.22.0 @theia/variable-resolver@1.22.0 @theia/core@1.22.0 keytar@7.2.0 prebuild-install@6.1.4 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/workspace@1.22.0 @theia/variable-resolver@1.22.0 @theia/core@1.22.0 keytar@7.2.0 prebuild-install@6.1.4 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/workspace@1.22.0 @theia/filesystem@1.22.0 @theia/core@1.22.0 keytar@7.2.0 prebuild-install@6.1.4 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/markers@1.22.0 @theia/filesystem@1.22.0 @theia/core@1.22.0 keytar@7.2.0 prebuild-install@6.1.4 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/markers@1.22.0 @theia/workspace@1.22.0 @theia/core@1.22.0 keytar@7.2.0 prebuild-install@6.1.4 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/markers@1.22.0 @theia/navigator@1.22.0 @theia/core@1.22.0 keytar@7.2.0 prebuild-install@6.1.4 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/markers@1.22.0 @theia/workspace@1.22.0 @theia/variable-resolver@1.22.0 @theia/core@1.22.0 drivelist@9.2.4 prebuild-install@5.3.6 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/markers@1.22.0 @theia/workspace@1.22.0 @theia/filesystem@1.22.0 @theia/core@1.22.0 drivelist@9.2.4 prebuild-install@5.3.6 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/markers@1.22.0 @theia/navigator@1.22.0 @theia/filesystem@1.22.0 @theia/core@1.22.0 drivelist@9.2.4 prebuild-install@5.3.6 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/markers@1.22.0 @theia/navigator@1.22.0 @theia/workspace@1.22.0 @theia/core@1.22.0 drivelist@9.2.4 prebuild-install@5.3.6 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/markers@1.22.0 @theia/workspace@1.22.0 @theia/variable-resolver@1.22.0 @theia/core@1.22.0 keytar@7.2.0 prebuild-install@6.1.4 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/markers@1.22.0 @theia/workspace@1.22.0 @theia/filesystem@1.22.0 @theia/core@1.22.0 keytar@7.2.0 prebuild-install@6.1.4 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/markers@1.22.0 @theia/navigator@1.22.0 @theia/filesystem@1.22.0 @theia/core@1.22.0 keytar@7.2.0 prebuild-install@6.1.4 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/markers@1.22.0 @theia/navigator@1.22.0 @theia/workspace@1.22.0 @theia/core@1.22.0 keytar@7.2.0 prebuild-install@6.1.4 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/markers@1.22.0 @theia/navigator@1.22.0 @theia/workspace@1.22.0 @theia/variable-resolver@1.22.0 @theia/core@1.22.0 drivelist@9.2.4 prebuild-install@5.3.6 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/markers@1.22.0 @theia/navigator@1.22.0 @theia/workspace@1.22.0 @theia/filesystem@1.22.0 @theia/core@1.22.0 drivelist@9.2.4 prebuild-install@5.3.6 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/markers@1.22.0 @theia/navigator@1.22.0 @theia/workspace@1.22.0 @theia/variable-resolver@1.22.0 @theia/core@1.22.0 keytar@7.2.0 prebuild-install@6.1.4 simple-get@3.1.0
  • Introduced through: @theia/preferences@1.22.0 @theia/monaco@1.22.0 @theia/markers@1.22.0 @theia/navigator@1.22.0 @theia/workspace@1.22.0 @theia/filesystem@1.22.0 @theia/core@1.22.0 keytar@7.2.0 prebuild-install@6.1.4 simple-get@3.1.0

Overview

Affected versions of this package are vulnerable to Information Exposure. When getting Location response header after fetching a remote url with Cookie, it will follow that url and fetch it with the provided cookie which will be then leaked to the attacker .

Remediation

Upgrade simple-get to version 4.0.1 or higher.

References