MidnightBSD

Advisories for ipip_project

CVE-2016-10594 MEDIUM

ipip is a Node.js module to query geolocation information for an IP or domain, based on database by ipip.net. ipip downloads data resources over HTTP, which leaves it vulnerable to MITM attacks.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-311,CWE-310,

Products Affected

Vendor Product Version
ipip_project ipip -