VYPR

npm package

@fraction/oasis

pkg:npm/%40fraction/oasis

Vulnerabilities (1)

  • CVE-2020-11003MedApr 14, 2020
    affected < 2.15.0fixed 2.15.0

    Oasis before version 2.15.0 has a potential DNS rebinding or CSRF vulnerability. If you're running a vulnerable application on your computer and an attacker can trick you into visiting a malicious website, they could use DNS rebinding and CSRF attacks to read/write to vulnerable