[PUNCIA] [CWE-319] Cleartext Transmission of Sensitive Information via HTTP urls in `API_URLS`
Description
Published to the GitHub Advisory Database
Jul 19, 2024
Reviewed
Jul 19, 2024
Published by the National Vulnerability Database
Jul 19, 2024
Last updated
Aug 1, 2024
Impact
API_URLS
is utilizing HTTP instead of HTTPS for communication that can lead to issues like Eavesdropping, Data Tampering, Unauthorized Data Access & MITM Attacks.References
ISSUE
PATCH
References