pennyworth is a natural language templating engine. pennyworth downloads data resources over HTTP, which leaves it vulnerable to MITM attacks.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-311,CWE-310,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| pennyworth_project | pennyworth | * |