VYPR

npm package

openframe-ascii-image

pkg:npm/openframe-ascii-image

Vulnerabilities (1)

  • CVE-2016-10690HigJun 4, 2018
    affected <= 0.1.0

    openframe-ascii-image module is an openframe plugin which adds support for ascii images via fim. openframe-ascii-image downloads resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested