Vulnerability CVE-2022-25855
Published: 2023-02-06

Description:
All versions of the package create-choo-app3 are vulnerable to Command Injection via the devInstall function due to improper user-input sanitization.

 References:
https://security.snyk.io/vuln/SNYK-JS-CREATECHOOAPP3-3157951
Copyright 2026, cxsecurity.com

 

Back to Top