In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsUpgrade jleehr/canto-saas-api to version 3.0.0 or higher.
Affected versions of this package are vulnerable to Use of GET Request Method With Sensitive Query Strings in the process of handling OAuth2 token requests, where sensitive credentials such as app_id, app_secret, refresh_token, and code are included in the URL query string and exception messages. An attacker can gain unauthorized access to confidential information by obtaining access to web server logs, proxy logs, APM tracing data, or application error logs that record these credentials.
This vulnerability can be mitigated by restricting access to logs containing OAuth credentials and by catching and sanitizing exception messages before logging or forwarding them.