Description
sfml downloads resources over HTTP, which leaves it vulnerable to MITM attacks.
Remediation
References
https://nodesecurity.io/advisories/256
Related Vulnerabilities
CVE-2023-26487 Vulnerability in maven package org.webjars.npm:vega
CVE-2022-43428 Vulnerability in maven package com.compuware.jenkins:compuware-topaz-for-total-test
CVE-2020-5207 Vulnerability in maven package io.ktor:ktor-client-cio
CVE-2020-7645 Vulnerability in npm package chrome-launcher
CVE-2018-19413 Vulnerability in maven package org.sonarsource.sonarqube:sonar-plugin-api