0.003 Low
EPSS
Percentile
69.2%
Versions of whereis before 0.4.1 are vulnerable to command injection if untrusted user input is passed into whereis.
whereis
Update to version 0.4.1 or later.