VYPR

npm package

hubl-server

pkg:npm/hubl-server

Vulnerabilities (1)

  • CVE-2017-16035HigJun 4, 2018
    affected <= 1.1.5

    The hubl-server module is a wrapper for the HubL Development Server. During installation hubl-server downloads a set of dependencies from api.hubapi.com. It appears in the code that these files are downloaded over HTTPS however the api.hubapi.com endpoint redirects to a HTTP url.