Vulnerability: Insecure Binary Resource Downloads in Unicode before 9.0.0
CVE-2016-10578 · MEDIUM Severity
AV:N/AC:M/AU:N/C:P/I:P/A:P
unicode loads unicode data downloaded from unicode.org into nodejs. Unicode before 9.0.0 downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks.
Learn more about our Web Application Penetration Testing UK.