VYPR

npm package

webdrvr

pkg:npm/webdrvr

Vulnerabilities (1)

  • CVE-2016-10601HigMay 29, 2018
    affected <= 2.43.0-1

    webdrvr is a npm wrapper for Selenium Webdriver including Chromedriver / IEDriver / IOSDriver / Ghostdriver. webdrvr downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the reque