463 matches found
GHSA-M7P2-GHFH-PJVX Vulnerability in crunch function leads to arbitrary code execution via filePath parameters
aaptjs is a node wraper for aapt. An issue was discovered in the crunch function in shenzhim aaptjs 1.3.1, allows attackers to execute arbitrary code via the filePath parameters...
Remote Code Execution (RCE)
aaptjs is vulnerable to remote code execution. The add function in index.js does not properly sanitize user-provided data, allowing an attacker to provide malicious code via its filePath parameter...
Remote Code Execution (RCE)
aaptjs is vulnerable to remote code execution. The add function in index.js does not properly sanitize user-provided data, allowing an attacker to provide malicious code via its filePath parameter...
Remote Code Execution (RCE)
aaptjs is vulnerable to remote code execution. The vulnerability exists because of lack of sanitization of user-provided data in the add function, allowing an attacker to provide malicious code via its filePath parameter...
aaptjs remote code execution vulnerability (CNVD-2021-84826)
aaptjs is a node wrapper for aapt. aaptjs version 1.3.1 has a remote code execution vulnerability in the list function. An attacker can exploit this vulnerability to execute arbitrary code via the filePath parameter...
aaptjs remote code execution vulnerability (CNVD-2021-84829)
aaptjs is a node wrapper for aapt. aaptjs version 1.3.1 has a remote code execution vulnerability in the remove function. An attacker can exploit this vulnerability to execute arbitrary code via the filePath parameter...
aaptjs remote code execution vulnerability (CNVD-2021-84832)
aaptjs is a node wrapper for aapt. aaptjs version 1.3.1 has a remote code execution vulnerability in the singleCrunch function. An attacker can exploit this vulnerability to execute arbitrary code via the filePath parameter...
aaptjs remote code execution vulnerability (CNVD-2021-84830)
aaptjs is a node wrapper for aapt. aaptjs version 1.3.1 has a remote code execution vulnerability in the packageCmd function. An attacker can exploit this vulnerability to execute arbitrary code via the filePath parameter...
aaptjs remote code execution vulnerability
aaptjs is a node wrapper for aapt. aaptjs version 1.3.1 has a remote code execution vulnerability in the add function. An attacker can exploit this vulnerability to execute arbitrary code via the filePath parameter...
aaptjs remote code execution vulnerability (CNVD-2021-84831)
aaptjs is a node wrapper for aapt. aaptjs version 1.3.1 has a remote code execution vulnerability in the crunch function. An attacker can exploit this vulnerability to execute arbitrary code via the filePath parameter...
CVE-2020-36381
An issue was discovered in the singleCrunch function in shenzhim aaptjs 1.3.1, allows attackers to execute arbitrary code via the filePath parameters...
CVE-2020-36378
An issue was discovered in the packageCmd function in shenzhim aaptjs 1.3.1, allows attackers to execute arbitrary code via the filePath parameters...
CVE-2020-36380
An issue was discovered in the crunch function in shenzhim aaptjs 1.3.1, allows attackers to execute arbitrary code via the filePath parameters...
CVE-2020-36379
An issue was discovered in the remove function in shenzhim aaptjs 1.3.1, allows attackers to execute arbitrary code via the filePath parameters...
CVE-2020-36380
An issue was discovered in the crunch function in shenzhim aaptjs 1.3.1, allows attackers to execute arbitrary code via the filePath parameters...
CVE-2020-36381
An issue was discovered in the singleCrunch function in shenzhim aaptjs 1.3.1, allows attackers to execute arbitrary code via the filePath parameters...
CVE-2020-26707
An issue was discovered in the add function in Shenzhim AAPTJS 1.3.1 which allows attackers to execute arbitrary code via the filePath parameter...
CVE-2020-36376
An issue was discovered in the list function in shenzhim aaptjs 1.3.1, allows attackers to execute arbitrary code via the filePath parameters...
CVE-2020-36376
An issue was discovered in the list function in shenzhim aaptjs 1.3.1, allows attackers to execute arbitrary code via the filePath parameters...
Code injection
An issue was discovered in the singleCrunch function in shenzhim aaptjs 1.3.1, allows attackers to execute arbitrary code via the filePath parameters...