8 matches found
EUVD-2022-6415
Malicious code in bioql PyPI...
GHSA-RWVF-C3WM-QM6W ffmpeg-sdk vulnerable to OS Command Injection
A command injection vulnerability affects all versions of package ffmpeg-sdk. The injection point is located in line 9 in index.js...
ffmpeg-sdk vulnerable to OS Command Injection
A command injection vulnerability affects all versions of package ffmpeg-sdk. The injection point is located in line 9 in index.js...
CVE-2020-28435
This affects all versions of package ffmpeg-sdk. The injection point is located in line 9 in index.js...
Sql injection
This affects all versions of package ffmpeg-sdk. The injection point is located in line 9 in index.js...
CVE-2020-28435 Command Injection
This affects all versions of package ffmpeg-sdk. The injection point is located in line 9 in index.js...
CVE-2020-28435
The CVE-2020-28435 entry affects all versions of the Node.js package ffmpeg-sdk . The root cause is a command injection vulnerability in the injection point at line 9 in index.js (function execute), allowing arbitrary commands to be executed. In the reported PoC, an attacker calls root.execute("t...
Command Injection
Overview Affected versions of this package are vulnerable to Command Injection. The injection point is located in line 9 in index.js. PoC var root = require"ffmpeg-sdk"; root.execute"touch JHU"; Remediation There is no fixed version for ffmpeg-sdk. Credit: JHU System Security Lab...