4 matches found
CVE-2020-8129
An unintended require vulnerability in script-manager npm package version 0.8.6 and earlier may allow attackers to execute arbitrary code...
CVE-2020-8129
An unintended require vulnerability in script-manager npm package version 0.8.6 and earlier may allow attackers to execute arbitrary code...
CVE-2020-8129
An unintended require vulnerability in script-manager npm package version 0.8.6 and earlier may allow attackers to execute arbitrary code...
CVE-2020-8129
Summary: CVE-2020-8129 affects the Node.js module script-manager (version 0.8.6 and earlier). The vulnerability arises from how the module loads code via dynamic require using a user-controlled path (execModulePath), which can cause arbitrary code execution on the server. Multiple sources (NVD, R...