Описание
tiny-json-http missing SSL certificate validation
brianleroux tiny-json-http version all versions since commit 9b8e74a232bba4701844e07bcba794173b0238a8 (Oct 29 2016) contains a Missing SSL certificate validation vulnerability in The libraries core functionality is affected. that can result in Exposes the user to man-in-the-middle attacks.
Пакеты
Наименование
tiny-json-http
npm
Затронутые версииВерсия исправления
>= 1.0.1, < 7.0.0
7.0.0
Связанные уязвимости
CVSS3: 8.1
nvd
почти 8 лет назад
brianleroux tiny-json-http version all versions since commit 9b8e74a232bba4701844e07bcba794173b0238a8 (Oct 29 2016) contains a Missing SSL certificate validation vulnerability in The libraries core functionality is affected. that can result in Exposes the user to man-in-the-middle attacks.