mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-07 11:06:19 +00:00
719 B
719 B
CVE-2020-7795
Description
The package get-npm-package-version before 1.0.7 are vulnerable to Command Injection via main function in index.js.
POC
Reference
- https://security.snyk.io/vuln/SNYK-JS-GETNPMPACKAGEVERSION-1050390
- https://security.snyk.io/vuln/SNYK-JS-GETNPMPACKAGEVERSION-1050390
Github
No PoCs found on GitHub currently.