2 matches found
EUVD-2021-0486
Malware in sbrugna...
Command Injection
Overview Affected versions of this package are vulnerable to Command Injection. The injection point is located in line 678 in index file lib/index.js in the exported function installrequestedModule. PoC var root = require"buns"; var name = "& touch JHU"; root.installname; Remediation There is no...