{"source":1106812,"name":"on-headers","dependency":"on-headers","title":"on-headers is vulnerable to http response header manipulation","url":"https://github.com/advisories/GHSA-76c9-3jph-rj3q","severity":"low","versions":["0.0.0","1.0.0","1.0.1","1.0.2","1.1.0"],"vulnerableVersions":["0.0.0","1.0.0","1.0.1","1.0.2"],"cwe":["CWE-241"],"cvss":{"score":3.4,"vectorString":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N"},"range":"<1.1.0","id":"O+Ys/f4bZubU3jA9Sqz4HIIJaATwc83W201O653Eo/4y8FTwrgSc3mrXs4p8n7svj0OzipJYTBXXWJCgp81mSQ=="}