EPSS
Percentile
72.3%
install-package and umount are vulnerable to OS command injection. The vulnerabilities exists as the values of args were not sanitized when used in exec.
args
exec
github.com/1000ch/install-package/blob/v0.4.0/index.js#L82
github.com/advisories/GHSA-6q48-vjq2-mwcj