Vulnerabilities (CVE)

Filtered by vendor Cycle-import-check Project Subscribe
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-24377 1 Cycle-import-check Project 1 Cycle-import-check 2024-11-21 N/A 7.4 HIGH
The package cycle-import-check before 1.3.2 are vulnerable to Command Injection via the writeFileToTmpDirAndOpenIt function due to improper user-input sanitization.