VYPR

npm package

whistle

pkg:npm/whistle

Vulnerabilities (1)

  • CVE-2024-55500HigDec 10, 2024
    affected <= 2.9.90

    Cross-Site Request Forgery (CSRF) in Avenwu Whistle v.2.9.90 and before allows attackers to perform malicious API calls, resulting in the execution of arbitrary code on the victim's machine.