Weak encryption on CSRF so tokens can be read by malicious attackers.
Problems have been patched as of v1.1.0
Upgrade to v1.1.0
https://cheatsheetseries.owasp.org/cheatsheets/Cross-SiteRequestForgeryPreventionCheat_Sheet.html
Submit an issue at the github repo
{ "github_reviewed_at": "2022-10-07T21:23:18Z", "nvd_published_at": "2022-10-07T20:15:00Z", "cwe_ids": [ "CWE-319" ], "github_reviewed": true, "severity": "HIGH" }