Filtered by vendor React-native-fast-image Project
Subscribe
Filtered by product React-native-fast-image
Subscribe
Total
1 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2020-7696 | 1 React-native-fast-image Project | 1 React-native-fast-image | 2020-07-22 | 5.0 MEDIUM | 5.3 MEDIUM |
This affects all versions of package react-native-fast-image. When an image with source={{uri: "...", headers: { host: "somehost.com", authorization: "..." }} is loaded, all other subsequent images will use the same headers, this can lead to signing credentials or other session tokens being leaked to other servers. |