EPSS
Percentile
22.9%
fsa through 0.5.1 is vulnerable to Command Injection. The first argument of ‘execGitCommand()’, located within ‘lib/rep.js#63’ can be controlled by users without any sanitization to inject arbitrary commands.
github.com/gregof/fsa/blob/master/lib/rep.js#L12
nvd.nist.gov/vuln/detail/CVE-2020-7615
snyk.io/vuln/SNYK-JS-FSA-564118