mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-06 02:31:38 +00:00
678 B
678 B
CVE-2022-25906
Description
All versions of the package is-http2 are vulnerable to Command Injection due to missing input sanitization or other checks, and sandboxes being employed to the isH2 function.
POC
Reference
Github
No PoCs found on GitHub currently.