-
Notifications
You must be signed in to change notification settings - Fork 53
/
PYSEC-2022-167.yaml
80 lines (80 loc) · 1.32 KB
/
PYSEC-2022-167.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
id: PYSEC-2022-167
details: Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository
httpie/httpie prior to 3.1.0.
affected:
- package:
name: httpie
ecosystem: PyPI
purl: pkg:pypi/httpie
ranges:
- type: GIT
repo: https://github.com/httpie/httpie
events:
- introduced: "0"
- fixed: 65ab7d5caaaf2f95e61f9dd65441801c2ddee38b
- type: ECOSYSTEM
events:
- introduced: "0"
- fixed: 3.1.0
versions:
- "0.1"
- 0.1.1
- 0.1.2
- 0.1.3
- 0.1.4
- 0.1.5
- 0.1.6
- 0.2.0
- 0.2.1
- 0.2.2
- 0.2.3
- 0.2.4
- 0.2.4dev
- 0.2.5
- 0.2.6
- 0.2.7
- 0.3.0
- 0.3.1
- 0.4.0
- 0.4.1
- 0.5.0
- 0.5.1
- 0.6.0
- 0.7.0
- 0.7.2
- 0.8.0
- 0.9.0
- 0.9.1
- 0.9.2
- 0.9.3
- 0.9.4
- 0.9.5
- 0.9.6
- 0.9.7
- 0.9.8
- 0.9.9
- 1.0.0
- 1.0.2
- 1.0.3
- 2.0.0
- 2.1.0
- 2.2.0
- 2.3.0
- 2.4.0
- 2.5.0
- 2.6.0
- 3.0.0
- 3.0.1
- 3.0.2
references:
- type: FIX
url: https://github.com/httpie/httpie/commit/65ab7d5caaaf2f95e61f9dd65441801c2ddee38b
- type: WEB
url: https://huntr.dev/bounties/dafb2e4f-c6b6-4768-8ef5-b396cd6a801f
- type: ADVISORY
url: https://github.com/advisories/GHSA-6pc9-xqrg-wfqw
aliases:
- CVE-2022-0430
- GHSA-6pc9-xqrg-wfqw
modified: "2022-03-23T14:28:20.245559Z"
published: "2022-03-15T15:15:00Z"