RSS   Vulnerabilities for 'Gulp-scss-lint'   RSS

2020-03-15
 
CVE-2020-7601

CWE-74
 

 
gulp-scss-lint through 1.0.0 allows execution of arbitrary commands. It is possible to inject arbitrary commands to the "exec" function located in "src/command.js" via the provided options.

 


Copyright 2024, cxsecurity.com

 

Back to Top