Command Injection
Overview macfromip is a module that gets a MAC address from a LAN IP address Affected versions of this package are vulnerable to Command Injection. The injection points are located in lines 66 and 96 in macfromip.js. PoC var a = require"macfromip"; a.getMacInLinux"& touch JHU", function;...