Lucene search
K

4 matches found

Saint
Saint
added 2026/02/04 12:0 a.m.94 views

React Native Community CLI remote command execution

Added: 02/04/2026 Background React Native is a framework for building mobile JavaScript applications. React Native Community CLI is a collection of command line tools that help developers build React Native mobile applications. Problem A vulnerability in React Native Community CLI when running wi...

9.8CVSS6.1AI score0.62378EPSS
Exploits5
Saint
Saint
added 2026/02/04 12:0 a.m.152 views

React Native Community CLI remote command execution

Added: 02/04/2026 Background React Native is a framework for building mobile JavaScript applications. React Native Community CLI is a collection of command line tools that help developers build React Native mobile applications. Problem A vulnerability in React Native Community CLI when running wi...

9.8CVSS6.2AI score0.62378EPSS
Exploits5
OSV
OSV
added 2025/11/03 6:31 p.m.6 views

GHSA-399J-VXMF-HJVR @react-native-community/cli has arbitrary OS command injection

The Metro Development Server, which is opened by the React Native CLI, binds to external interfaces by default. The server exposes an endpoint that is vulnerable to OS command injection. This allows unauthenticated network attackers to send a POST request to the server and run arbitrary...

9.8CVSS8AI score0.62378EPSS
Exploits5References16
Snyk
Snyk
added 2025/11/03 4:41 p.m.26 views

Command Injection

Overview Affected versions of this package are vulnerable to Command Injection via the url variable processing in openURLMiddleware.ts. An attacker can execute arbitrary system commands by sending crafted HTTP POST requests, if the Metro development server is in use. This server binds to all...

9.8CVSS8.3AI score0.62378EPSS
Exploits5References2
Rows per page
Query Builder