4 matches found
CVE-2020-7607
gulp-styledocco through 0.0.3 allows execution of arbitrary commands. The argument 'options' of the exports function in 'index.js' can be controlled by users without any sanitization...
CVE-2020-7607
gulp-styledocco through 0.0.3 allows execution of arbitrary commands. The argument 'options' of the exports function in 'index.js' can be controlled by users without any sanitization...
CVE-2020-7607
The CVE-2020-7607 issue affects gulp-styledocco up to version 0.0.3, where the options parameter of the exports function in index.js can be controlled by users without sanitization, enabling command execution (OS Command Injection). Exploitation details or in-the-wild status are not provided in t...
CVE-2020-7607
gulp-styledocco through 0.0.3 allows execution of arbitrary commands. The argument 'options' of the exports function in 'index.js' can be controlled by users without any sanitization...