Vulnerabilities > NPM Programmatic Project

DATE	CVE	VULNERABILITY TITLE	RISK
2020-04-07	CVE-2020-7614	OS Command Injection vulnerability in Npm-Programmatic Project Npm-Programmatic 0.0.12 npm-programmatic through 0.0.12 is vulnerable to Command Injection.The packages and option properties are concatenated together without any validation and are used by the 'exec' function directly. network low complexity npm-programmatic-project CWE-78	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.

Vulnerabilities > NPM Programmatic Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"NPM Programmatic Project"}]}

Vulnerabilities > NPM Programmatic Project