EPSS
Percentile
72.4%
aaptjs is vulnerable to remote code execution. The vulnerability exists because of lack of sanitization of user-provided data in the add function, allowing an attacker to provide malicious code via its filePath parameter.
github.com/shenzhim/aaptjs/blob/f9fab0b5c3530a6d117cc4f98732b4b231c7962f/index.js#L18
github.com/shenzhim/aaptjs/issues/2