deferred-exec is vulnerable to command injection. The vulnerability exists in deferredChildProcess
function in deferred-exec.js
because the command execution is not properly validated which allows an attacker to inject and execute malicious commands.
CPE | Name | Operator | Version |
---|---|---|---|
deferred-exec | eq | 0.1.0 | |
deferred-exec | le | 0.3.1 | |
deferred-exec | eq | 0.1.0 | |
deferred-exec | le | 0.3.1 |