Critical severityNVD Advisory· Published Apr 18, 2023· Updated Feb 5, 2025
Use of Hard-coded Credentials in nuxtlabs/github-module
CVE-2023-2138
Description
Use of Hard-coded Credentials in GitHub repository nuxtlabs/github-module prior to 1.6.2.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
@nuxtlabs/github-modulenpm | < 1.6.2 | 1.6.2 |
Affected products
2- Range: unspecified
Patches
Vulnerability mechanics
References
5- github.com/advisories/GHSA-fp2w-g92g-fgq4ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2023-2138ghsaADVISORY
- github.com/nuxtlabs/github-module/commit/5490c43f729eee60f07920bf88c0aabdc1398b6eghsaWEB
- github.com/nuxtlabs/github-module/releases/tag/v1.6.2ghsaWEB
- huntr.dev/bounties/65096ef9-eafc-49da-b49a-5b88c0203ca6ghsaWEB
News mentions
0No linked articles in our index yet.