EUVD-2021-2594

Malware in sbrugna...

GHSA-VM5J-VQR6-V7V8 OS Command Injection in pixl-class

pixl-class prior to 1.0.3 allows execution of arbitrary commands. The members argument of the create function can be controlled by users without any sanitization...

OS Command Injection in pixl-class

pixl-class prior to 1.0.3 allows execution of arbitrary commands. The members argument of the create function can be controlled by users without any sanitization...

Remote Code Execution (RCE)

pixl-class is vulnerable to remote code execution RCE. The attack is possible because it uses eval function in class.js, allowing an attacker to inject malicious script and to get executed...

Pixl-class Operating System Command Injection Vulnerability

pixl-class is a Node.js module for creating classes with inheritance and mixins. An operating system command injection vulnerability exists in pixl-class versions prior to 1.0.3. The vulnerability can be exploited to execute arbitrary commands with the 'member' parameter in the 'create' function...

CVE-2020-7640

pixl-class prior to 1.0.3 allows execution of arbitrary commands. The members argument of the create function can be controlled by users without any sanitization...

CVE-2020-7640

CVE-2020-7640 describes an OS command injection in pixl-class prior to version 1.0.3. The vulnerability arises because the members parameter of the create function is not sanitized, allowing an attacker to execute arbitrary commands. Affected: pixl-class (Node.js module) before 1.0.3. Impact per ...

CVE-2020-7640

pixl-class prior to 1.0.3 allows execution of arbitrary commands. The members argument of the create function can be controlled by users without any sanitization...

Arbitrary Code Execution

Overview pixl-class is a library that allows you to create classes in a more classical sort of way, including support for static class members, proper constructors, inheritance, and mixins. Affected versions of this package are vulnerable to Arbitrary Code Execution. The injection point is locate...