0.008 Low
EPSS
Percentile
82.1%
npm-programmatic is vulnerable to OS command injection. The packages and option properties are concatenated and directly passed to an exec function.
exec
github.com/advisories/GHSA-426h-24vj-qwxf
github.com/Manak/npm-programmatic/blob/master/index.js#L18
www.npmjs.com/advisories/1507