2 matches found
CVE-2020-7613
clamscan through 1.2.0 is vulnerable to Command Injection. It is possible to inject arbitrary commands as part of the isclamavbinary function located within Index.js. It should be noted that this vulnerability requires a pre-requisite that a folder should be created with the same command that wil...
CVE-2020-7613
CVE-2020-7613 affects clamscan up to 1.2.0 and is caused by a command-injection flaw in the _is_clamav_binary function within Index.js. The vulnerability permits injecting arbitrary commands, but exploitation in documented references notes a prerequisite: a folder must be created with the same co...