Cx68e4da20-b53a @ Npm-ua-parser-js-0.7.29

**Vulnerable Package** issue exists @ **Npm\-ua\-parser\-js\-0\.7\.29** in branch **main**

This package exfiltrates stored credentials and sensitive information
### About

Data exfiltration may be done in numerous ways such as through HTTP requests, DNS tunneling, various webhooks and more. It is common by attackers to try to exfiltrate sensitive information such as:
- Credentials
- Environment variables
- SSH keys
- Authentication tokens
- Computer and operating system information
- Network settings

![infographic](https://checkmarx-scs-cdn.s3.amazonaws.com/sca/infographics/data-exfiltration.png)

**Namespace:** James-AST
**Repository:** msft
**Repository Url:** https://github.com/James-AST/msft
**CxAST\-Project:** James-AST/msft
**CxAST platform scan:** [d217bf9e\-499c\-4ae8\-a115\-08b6cd62b182](https://ast.checkmarx.net/projects/fada48c7-0c49-472a-994a-763d8a847895/scans?id=d217bf9e-499c-4ae8-a115-08b6cd62b182&branch=main)
**Branch:** main
**Application:** msft
**Severity:** HIGH
**State:** NOT_IGNORED
**Status:** RECURRENT
**CWE:** Data Exfiltration


----
**Addition Info**


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Cx68e4da20-b53a @ Npm-ua-parser-js-0.7.29 #49

About

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Cx68e4da20-b53a @ Npm-ua-parser-js-0.7.29 #49

Description

About

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions