VYPR

npm package

react-native-baidu-voice-synthesizer

pkg:npm/react-native-baidu-voice-synthesizer

Vulnerabilities (1)

  • CVE-2016-10697HigJun 4, 2018
    affected <= 1.0.0

    react-native-baidu-voice-synthesizer is a baidu voice speech synthesizer for react native. react-native-baidu-voice-synthesizer downloads resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the r