Vulnerabilities > Keep Module Latest Project

DATE	CVE	VULNERABILITY TITLE	RISK
2023-05-27	CVE-2023-26128	Command Injection vulnerability in Keep-Module-Latest Project Keep-Module-Latest All versions of the package keep-module-latest are vulnerable to Command Injection due to missing input sanitization or other checks and sandboxes being employed to the installModule function. Note: To execute the code snippet and potentially exploit the vulnerability, the attacker needs to have the ability to run Node.js code within the target environment. local low complexity keep-module-latest-project CWE-77	7.8

Vulnerabilities > Keep Module Latest Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Keep Module Latest Project"}]}