CVE-2021-23566
Published
CVSS v3
4
MEDIUM
CVSS v2
2.1
LOW
Affected
1
PROJECT
Description
The package nanoid from 3.0.0 and before 3.1.31 are vulnerable to Information Exposure via the valueOf() function which allows to reproduce the last id generated.
A tiny (118 bytes), secure, URL-friendly, unique string ID generator for JavaScript
GitHub