EPSS
Percentile
88.0%
apiconnect-cli-plugins is vulnerable to OS command injection. The vulnerability exists the values of pluginUri is not sanitized and can be controlled by users.
pluginUri
openbase.io/js/apiconnect-cli-plugins
unpkg.com/[email protected]/lib/plugin-loader.js