Filtered by vendor Curling Project
Subscribe
Total
1 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2019-10789 | 1 Curling Project | 1 Curling | 2020-02-07 | 10.0 HIGH | 9.8 CRITICAL |
All versions of curling.js are vulnerable to Command Injection via the run function. The command argument can be controlled by users without any sanitization. |