0.001 Low
EPSS
Percentile
36.1%
http-request is vulnerable to man-in-the-middle (MitM). The vulnerability exists due to the lack of SSL certification validation that allows certificate spoofing.
github.com/kevinsawicki/http-request/blob/master/lib/src/main/java/com/github/kevinsawicki/http/HttpRequest.java
github.com/kevinsawicki/http-request/blob/master/lib/src/main/java/com/github/kevinsawicki/http/HttpRequest.java#L270