Vulnerabilities (CVE)

Filtered by vendor Curling Project Subscribe
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-10789 1 Curling Project 1 Curling 2024-11-21 10.0 HIGH 9.8 CRITICAL
All versions of curling.js are vulnerable to Command Injection via the run function. The command argument can be controlled by users without any sanitization.