3 matches found
CVE-2021-34083
Google-it is a Node.js package which allows its users to send search queries to Google and receive the results in a JSON format. When using the 'Open in browser' option in versions up to 1.6.2, google-it will unsafely concat the result's link retrieved from google to a shell command, potentially...
CVE-2021-34083
CVE-2021-34083 affects the Node.js package google-it . The issue is in the openInBrowser path (googleIt.js) where the result URL from Google is unsafely concatenated into a shell command, enabling potential remote code execution on the server. Affected versions: up to 1.6.2. The provided document...
CVE-2021-34083
Google-it is a Node.js package which allows its users to send search queries to Google and receive the results in a JSON format. When using the 'Open in browser' option in versions up to 1.6.2, google-it will unsafely concat the result's link retrieved from google to a shell command, potentially...