VYPR

npm package

windows-selenium-chromedriver

pkg:npm/windows-selenium-chromedriver

Vulnerabilities (1)

  • CVE-2016-10687HigJun 4, 2018
    affected >= 0.0.0

    windows-selenium-chromedriver is a module that downloads the Selenium Jar file. windows-selenium-chromedriver downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested re