Vulnerabilities > GFE Sass Project

DATE CVE VULNERABILITY TITLE RISK
2018-06-04 CVE-2017-16040 Cleartext Transmission of Sensitive Information vulnerability in Gfe-Sass Project Gfe-Sass
gfe-sass is a library for promises (CommonJS/Promises/A,B,D) gfe-sass downloads resources over HTTP, which leaves it vulnerable to MITM attacks.
network
high complexity
gfe-sass-project CWE-319
8.1