Описание
Command injection in fs-path
fs-path node module before 0.0.25 is vulnerable to command injection by way of user-supplied inputs via the copy, copySync, remove, and removeSync methods.
Пакеты
Наименование
fs-path
npm
Затронутые версииВерсия исправления
< 0.0.25
0.0.25
Связанные уязвимости
CVSS3: 9.8
nvd
почти 5 лет назад
fs-path node module before 0.0.25 is vulnerable to command injection by way of user-supplied inputs via the `copy`, `copySync`, `remove`, and `removeSync` methods.