Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
node-bsdiff-android downloads resources over HTTP, which leaves it vulnerable to MITM attacks.
Advisories for Npm/Node-Bsdiff-Android package
2018
2017
Downloads Resources over HTTP
node-bsdiff-android downloads resources over HTTP, which leaves it vulnerable to MITM attacks.