3 matches found
CVE-2020-7625
op-browser through 1.0.6 is vulnerable to Command Injection. It allows execution of arbitrary commands via the url function...
hiproxy (>=1.1.3 <=2.0.0-next.3) potentially affected by CVE-2020-7625 via op-browser (>=1.0.6 <=1.0.9)
op-browser NPM version =1.0.6, =1.1.3, =2.0.0-next.3 Source cves: CVE-2020-7625 Source advisory: OSV:GHSA-3HQ6-RMV7-39VH...
CVE-2020-7625
CVE-2020-7625 affects the Node module op-browser . Versions up to and including 1.0.6 are vulnerable to a command injection that allows an attacker to execute arbitrary commands via the vulnerable url function. The issue can lead to remote code execution (RCE) with high impact. Remediation: upgra...