Vigil@nce - Vigil@nce - Node.js xmlhttprequest-ssl: Man-in-the-Middle via rejectUnauthorized, analyzed on 25/05/2021
July 2021 by Vigil@nce
Vigil@nce - An attacker can act as a Man-in-the-Middle via rejectUnauthorized() on Node.js xmlhttprequest-ssl, in order to read or write data in the session.
Plus d'information sur : https://vigilance.fr/vulnerability/Node-js-xmlhttprequest-ssl-Man-in-the-Middle-via-rejectUnauthorized-35519