fabric8-analytics-lsp-server (=0.3.0), graphql-validated-types (>=2.7.0 <=2.11.0) +1 more potentially affected by unknown CVE via semver-regex (>=3.0.0 <=3.1.1)

semver-regex NPM version =3.0.0, =2.7.0, =1.2.0, =1.2.3 Source cves: unknown CVE Source advisory: SNYK:JS-SEMVERREGEX-1047770...

iOffice 0.1 Remote Command Execution

iOffice 0.1 is vulnerable because it does not sanitize user input. It seems to be modular because none of the scripts are exactly the same on ones I've run across, but they all seem to be vulnerable. Command execution is possible...