npm roar-pidusage 命令注入漏洞
npm roar-pidusage is an application from the American company npm. It is used for cross-platform process cpu% and PID memory usage. roar-pidusage has a security vulnerability that can be exploited by an attacker to potentially execute arbitrary commands. This is due to the use of child processes ...