CVE-2021-23360
The CVE-2021-23360 entry affects the Node.js module killport prior to 1.0.2, which uses child_process.exec without input sanitization. This allows an attacker-controlled input to trigger arbitrary command execution (e.g., PoC that creates a file named “success”). Documentation from Snyk, GHSA, Ve...