Npm-programmatic Project - Npm-programmatic CVE - CVE Search - CVE Details

Filtered by vendor Npm-programmatic Project Subscribe

Filtered by product Npm-programmatic

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-7614	1 Npm-programmatic Project	1 Npm-programmatic	2021-07-21	7.5 HIGH	9.8 CRITICAL
npm-programmatic through 0.0.12 is vulnerable to Command Injection.The packages and option properties are concatenated together without any validation and are used by the 'exec' function directly.

Vulnerabilities (CVE)