VYPR

npm package

fis-parser-sass-bin

pkg:npm/fis-parser-sass-bin

Vulnerabilities (1)

  • CVE-2016-10660HigJun 4, 2018
    affected <= 1.0.1

    fis-parser-sass-bin a plugin for fis to compile sass using node-sass-binaries. fis-parser-sass-bin downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested resources wit