VYPR

RubyGems package

tweetstream

pkg:gem/tweetstream

Vulnerabilities (1)

  • CVE-2020-24393Feb 19, 2021
    affected <= 2.6.1

    TweetStream 2.6.1 uses the library eventmachine in an insecure way that does not have TLS hostname validation. This allows an attacker to perform a man-in-the-middle attack.