5 matches found
CVE-2021-26275
The eslint-fixer package through 0.1.5 for Node.js allows command injection via shell metacharacters to the fix function. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. The ozum/eslint-fixer GitHub repository has been intentionally deleted...
GHSA-45W5-PVR8-4RH5 Command injection in eslint-fixer
The eslint-fixer package through 0.1.5 for Node.js allows command injection via shell metacharacters to the fix function. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. The ozum/eslint-fixer GitHub repository has been intentionally deleted...
CVE-2021-26275
The eslint-fixer package through 0.1.5 for Node.js allows command injection via shell metacharacters to the fix function. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. The ozum/eslint-fixer GitHub repository has been intentionally deleted...
PT-2021-16985 · Unknown · Eslint-Fixer
Name of the Vulnerable Software and Affected Versions: eslint-fixer versions 0.1.5 and earlier Description: The issue allows command injection via shell metacharacters to the fix function. This affects products that are no longer supported by the maintainer. The ozum/eslint-fixer GitHub repositor...
Downloads Resources over HTTP in grunt-ccompiler
Affected versions of grunt-ccompiler insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on th...