Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

Github Security Blog
Github Security Blogadded 2022/06/03 12:0 a.m.26 views

OS Command Injection in proctree

OS Command Injection vulnerability in allenhwkim proctree through 0.1.1 and commit 0ac10ae575459457838f14e21d5996f2fa5c7593 for Node.js, allows attackers to execute arbitrary commands via the fix function...

10CVSS9.8AI score0.13289EPSS
Exploits1References4Affected Software1
OSV
OSVadded 2022/06/02 2:15 p.m.9 views

CVE-2021-34082

OS Command Injection vulnerability in allenhwkim proctree through 0.1.1 and commit 0ac10ae575459457838f14e21d5996f2fa5c7593 for Node.js, allows attackers to execute arbitrary commands via the fix function...

9.8CVSS10AI score
Exploits0References2
CVE
CVEadded 2022/06/01 2:31 p.m.57 views

CVE-2021-34082

CVE-2021-34082 describes an OS command injection in the Node.js package proctree (versions up to 0.1.1 and the specific commit 0ac10ae575459457838f14e21d5996f2fa5c7593) where the vulnerable path is the getProcessTree/fix workflow. The root cause, per connected sources, is lack of sanitization of ...

10CVSS10AI score0.13289EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder