jleehr/canto-saas-api Security Advisories for 1.0.3 (2)
-
[MEDIUM] canto-saas-api: OAuth credentials exposed in URL query string and exception messages
PKSA-cgpk-zpcz-kxmr CVE-2026-55375 GHSA-37pm-83g7-r22v
Affected version: <=2.0.0
Reported by:
GitHub -
[MEDIUM] canto-saas-api: Authenticated API requests can be redirected via unencoded path variables
PKSA-j2jj-8zzq-m6yn CVE-2026-55374 GHSA-9qfv-wgh2-m6p8
Affected version: <=2.0.0
Reported by:
GitHub