RSS   Vulnerabilities for 'Closure-compiler-stream'   RSS

2020-03-15
 
CVE-2020-7603

CWE-74
 

 
closure-compiler-stream through 0.1.15 allows execution of arbitrary commands. The argument "options" of the exports function in "index.js" can be controlled by users without any sanitization.

 


Copyright 2024, cxsecurity.com

 

Back to Top