Vulnerabilities > GFE Sass Project > GFE Sass
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2018-06-04 | CVE-2017-16040 | Cleartext Transmission of Sensitive Information vulnerability in Gfe-Sass Project Gfe-Sass gfe-sass is a library for promises (CommonJS/Promises/A,B,D) gfe-sass downloads resources over HTTP, which leaves it vulnerable to MITM attacks. | 9.3 |