An unintended require vulnerability in script-manager npm package version 0.8.6 and earlier may allow attackers to execute arbitrary code.
References
Link | Resource |
---|---|
https://hackerone.com/reports/660563 | Exploit Third Party Advisory |
Configurations
History
No history.
Information
Published : 2020-02-14 22:15
Updated : 2024-02-28 17:28
NVD link : CVE-2020-8129
Mitre link : CVE-2020-8129
CVE.ORG link : CVE-2020-8129
JSON object : View
Products Affected
script-manager_project
- script-manager
CWE
CWE-94
Improper Control of Generation of Code ('Code Injection')