Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:58 a.m.13 views

CVE-2020-7601

gulp-scss-lint through 1.0.0 allows execution of arbitrary commands. It is possible to inject arbitrary commands to the "exec" function located in "src/command.js" via the provided options...

9.8CVSS7.2AI score0.02644EPSS
Exploits1References1
Node.js
Node.js
added 2021/05/07 4:18 p.m.73 views

Injection in gulp-scss-lint

Overview gulp-scss-lint through 1.0.0 allows execution of arbitrary commands. It is possible to inject arbitrary commands to the "exec" function located in "src/command.js" via the provided options. Recommendation Avoid using gulp-scss-lint as there is no current safe version of this module...

7.5CVSS6.8AI score0.02644EPSS
Exploits1Affected Software1
OSV
OSV
added 2020/03/15 10:15 p.m.14 views

CVE-2020-7601

gulp-scss-lint through 1.0.0 allows execution of arbitrary commands. It is possible to inject arbitrary commands to the "exec" function located in "src/command.js" via the provided options...

9.8CVSS7.1AI score
Exploits0References1
NVD
NVD
added 2020/03/15 10:15 p.m.34 views

CVE-2020-7601

gulp-scss-lint through 1.0.0 allows execution of arbitrary commands. It is possible to inject arbitrary commands to the "exec" function located in "src/command.js" via the provided options...

9.8CVSS9.6AI score0.02644EPSS
Exploits1References1
Cvelist
Cvelist
added 2020/03/15 9:23 p.m.37 views

CVE-2020-7601

gulp-scss-lint through 1.0.0 allows execution of arbitrary commands. It is possible to inject arbitrary commands to the "exec" function located in "src/command.js" via the provided options...

9.7AI score0.02644EPSS
Exploits1References1
CVE
CVE
added 2020/03/15 9:23 p.m.52 views

CVE-2020-7601

CVE-2020-7601 affects gulp-scss-lint up to version 1.0.0. The root cause is command injection through the exec function in src/command.js, allowing an attacker to execute arbitrary commands. Documented impact is remote command execution with high severity (NVD CVSS v3.1 base score 9.8; v2 7.5). M...

9.8CVSS9.5AI score0.02644EPSS
Exploits1References1Affected Software1
vulnersOsv
vulnersOsv
added 2020/03/13 9:26 a.m.8 views

@absolunet/nwayo-workflow (>=3.2.0 <=3.3.6), @londondevstudio/gush (>=0.9.0 <=0.10.0) +53 more potentially affected by CVE-2020-7601 via gulp-scss-lint (>=0.1.12 <=1.0.0)

gulp-scss-lint NPM version =0.1.12, =3.2.0, =0.9.0, =1.0.0, =1.1.1, =0.0.27, =0.0.33, =1.0.34, =1.1.54 - fear-core-dev =1.3.2 and more Source cves: CVE-2020-7601 Source advisory: SNYK:JS-GULPSCSSLINT-560114...

9.8CVSS7.2AI score0.02644EPSS
Exploits1
Rows per page
Query Builder