VulnerableCode Package Details - pkg:npm/playwright@1.55.1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:npm/playwright@1.55.1

Essentials
History (3)

purl	pkg:npm/playwright@1.55.1

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-3a21-mb2w-f3cz	Playwright downloads and installs browsers without verifying the authenticity of the SSL certificate Use of `curl` with the `-k` (or `--insecure`) flag in installer scripts allows attackers to deliver arbitrary executables via Man-in-the-Middle (MitM) attacks. This can lead to full system compromise, as the downloaded files are installed as privileged applications.	CVE-2025-59288 GHSA-7mvr-c777-76hp

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-05-31T10:58:45.842835+00:00	GithubOSV Importer	Fixing	VCID-3a21-mb2w-f3cz	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/10/GHSA-7mvr-c777-76hp/GHSA-7mvr-c777-76hp.json	38.6.0
2026-05-31T01:05:31.935501+00:00	GHSA Importer	Fixing	VCID-3a21-mb2w-f3cz	https://github.com/advisories/GHSA-7mvr-c777-76hp	38.6.0
2026-05-30T21:04:24.859348+00:00	GitLab Importer	Fixing	VCID-3a21-mb2w-f3cz	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/playwright/CVE-2025-59288.yml	38.6.0