Vulnerability: botbait module records and tracks sensitive user information

Vulnerability: botbait module records and tracks sensitive user information

CVE-2017-16126 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The module botbait is a tool to be used to track bot and automated tools usage with-in the npm ecosystem. botbait is known to record and track user information. The module tracks the following information. Source IP process.versions process.platform How the module was invoked (test, require, pre-install)

Learn more about our User Device Pen Test.