VYPR

npm package

selenium-standalone-painful

pkg:npm/selenium-standalone-painful

Vulnerabilities (1)

  • CVE-2016-10679HigMay 29, 2018

    selenium-standalone-painful installs a start-selenium command line to start a standalone selenium server with chrome-driver. selenium-standalone-painful downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execu