VYPR

npm package

openframe-glslviewer

pkg:npm/openframe-glslviewer

Vulnerabilities (1)

  • CVE-2016-10607HigJun 1, 2018
    affected <= 0.2.8

    openframe-glsviewer is a Openframe extension which adds support for shaders via glslViewer. openframe-glsviewer downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested