Описание
Command Injection in @ronomon/opened
The @ronomon/opened library before 1.5.2 is vulnerable to a command injection vulnerability which would allow a remote attacker to execute commands on the system if the library was used with untrusted input.
Пакеты
Наименование
@ronomon/opened
npm
Затронутые версииВерсия исправления
< 1.5.2
1.5.2
Связанные уязвимости
CVSS3: 9.8
nvd
больше 4 лет назад
The @ronomon/opened library before 1.5.2 is vulnerable to a command injection vulnerability which would allow a remote attacker to execute commands on the system if the library was used with untrusted input.