Remote Code Execution (RCE)

wifiscanner is vulnerable to remote code execution. The vulnerability exists due to an allowable option to overwrite the default executable/binary path and its arguments...

sensorweb-desktop (=0.0.1) potentially affected by CVE-2020-15362 via wifiscanner (=0.0.10)

wifiscanner NPM version =0.0.10 is affected by a known vulnerability. The following packages have a transitive dependency on wifiscanner and may be impacted: - sensorweb-desktop =0.0.1 Source cves: CVE-2020-15362 Source advisory: OSV:GHSA-M6RW-M2V9-7HX4...

GHSA-M6RW-M2V9-7HX4 OS Command Injection in wifiscanner

wifiscanner.js in thingsSDK WiFi Scanner 1.0.1 allows Code Injection because it can be used with options to overwrite the default executable/binary path and its arguments. An attacker can abuse this functionality to execute arbitrary code...

OS Command Injection in wifiscanner

wifiscanner.js in thingsSDK WiFi Scanner 1.0.1 allows Code Injection because it can be used with options to overwrite the default executable/binary path and its arguments. An attacker can abuse this functionality to execute arbitrary code...