Vulnerabilities (CVE)

Filtered by vendor Npm-programmatic Project Subscribe
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-7614 1 Npm-programmatic Project 1 Npm-programmatic 2024-11-21 7.5 HIGH 9.8 CRITICAL
npm-programmatic through 0.0.12 is vulnerable to Command Injection.The packages and option properties are concatenated together without any validation and are used by the 'exec' function directly.