Name of the Vulnerable Software and Affected Versions stream-combine version 2.0.2

Description The issue concerns malicious code designed to steal sensitive information, including credentials and credit card details. This code searches form elements for passwords, credit card numbers, and CVC codes, then uploads the found information to a remote server using embedded HTML links or form actions. Applications with a set Content Security Policy are not affected by this issue.

Recommendations For version 2.0.2, consider downgrading to version 2.0.1 as a mitigation measure, especially if your application processes credentials or credit card information, to prevent potential information theft.