RSS   Podatności dla 'Node-notifier'   RSS

2020-12-11
 
CVE-2020-7789

CWE-78
 

 
This affects the package node-notifier before 9.0.0. It allows an attacker to run arbitrary commands on Linux machines due to the options params not being sanitised when being passed an array.

 


Copyright 2021, cxsecurity.com

 

Back to Top