Versions 0.0.1 and earlier of printer
are affected by a command injection vulnerability resulting from a failure to sanitize command arguments properly in the printDirect()
function.
Update to version 0.0.2 or later.
www.openwall.com/lists/oss-security/2014/05/13/1
www.openwall.com/lists/oss-security/2014/05/15/2
github.com/advisories/GHSA-5c8j-xr24-2665
github.com/tojocky/node-printer
github.com/tojocky/node-printer/commit/e001e38738c17219a1d9dd8c31f7d82b9c0013c7
nvd.nist.gov/vuln/detail/CVE-2014-3741
www.npmjs.com/advisories/27