Exposure of Sensitive Information to an Unauthorized Actor
The package nanoid is vulnerable to Information Exposure via the valueOf() function which allows to reproduce the last id generated.
Advisories for Npm/Nanoid package
2022
The package nanoid is vulnerable to Information Exposure via the valueOf() function which allows to reproduce the last id generated.