Описание
OS Command Injection in proctree
OS Command Injection vulnerability in allenhwkim proctree through 0.1.1 and commit 0ac10ae575459457838f14e21d5996f2fa5c7593 for Node.js, allows attackers to execute arbitrary commands via the fix function.
Пакеты
Наименование
proctree
npm
Затронутые версииВерсия исправления
<= 0.1.1
Отсутствует
Связанные уязвимости
CVSS3: 9.8
nvd
больше 3 лет назад
OS Command Injection vulnerability in allenhwkim proctree through 0.1.1 and commit 0ac10ae575459457838f14e21d5996f2fa5c7593 for Node.js, allows attackers to execute arbitrary commands via the fix function.