0.004 Low
EPSS
Percentile
72.8%
pomelo-monitor is vulnerable to remote code execution. An attacker is able to inject and execute arbitrary commands through pomelo-monitor parameter.
pomelo-monitor
github.com/advisories/GHSA-4j54-mxf6-wxx2
github.com/halfblood369/monitor/blob/900b5cadf59edcccac4754e5706a22719925ddb9/lib/processMonitor.js,