Описание
Command injection in connection-tester
This affects the package connection-tester before 0.2.1. The injection point is located in line 15 in index.js. Affected versions of this package are vulnerable to Command Injection
Пакеты
Наименование
connection-tester
npm
Затронутые версииВерсия исправления
< 0.2.1
0.2.1
Связанные уязвимости
CVSS3: 9.8
nvd
около 5 лет назад
This affects the package connection-tester before 0.2.1. The injection point is located in line 15 in index.js. The following PoC demonstrates the vulnerability: