aurelia path is part of the aurelia platform and contains utilities for path manipulation. aurelia path is vulnerable to a code injection vulnerability that exposes Aurelia applications that use the aurelia-path
package to parse strings. No detailed vulnerability details are currently available.