VYPR

npm package

headless-browser-lite

pkg:npm/headless-browser-lite

Vulnerabilities (1)

  • CVE-2016-10625HigJun 1, 2018
    affected < 2015.4.18-afixed 2015.4.18-a

    headless-browser-lite is a minimal npm installer for phantomjs and slimerjs with no external dependencies. headless-browser-lite downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping o