RSS   Vulnerabilities for 'Npm-programmatic'   RSS

2020-04-07
 
CVE-2020-7614

CWE-78
 

 
npm-programmatic through 0.0.12 is vulnerable to Command Injection.The packages and option properties are concatenated together without any validation and are used by the 'exec' function directly.

 


Copyright 2024, cxsecurity.com

 

Back to Top