0.001 Low
EPSS
Percentile
39.0%
p4 is vulnerable to command injection. The vulnerability exists due to improper input sanitization in the runCommand function, which allows an attacker to inject maliciously crafted commands into the system.
runCommand
github.com/natelong/p4/blob/master/p4.js%23L12
github.com/natelong/p4/commit/ae42e251beabf67c00539ec0e1d7aa149ca445fb