Vulnerability CVE-2022-25908
Published: 2023-01-26

Description:
All versions of the package create-choo-electron are vulnerable to Command Injection via the devInstall function due to improper user-input sanitization.

 References:
https://security.snyk.io/vuln/SNYK-JS-CREATECHOOELECTRON-3157953
Copyright 2026, cxsecurity.com

 

Back to Top