CVE-2022-31367: Strapi mishandles hidden attributes within admin API responses
(updated )
Strapi before 3.6.10 and 4.x before 4.1.10 mishandles hidden attributes within admin API responses.
References
Detect and mitigate CVE-2022-31367 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →