Lucene search

K
osvGoogleOSV:GHSA-F2JW-PR2C-9X96
HistoryFeb 10, 2022 - 11:41 p.m.

Code injection in @rkesters/gnuplot

2022-02-1023:41:49
Google
osv.dev
10

EPSS

0.004

Percentile

72.3%

@rkesters/gnuplot is an easy to use node module to draw charts using gnuplot and ps2pdf. The gnuplot package prior to version 0.1.0 for Node.js allows code execution via shell metacharacters in Gnuplot commands.

EPSS

0.004

Percentile

72.3%

Related for OSV:GHSA-F2JW-PR2C-9X96