ID | CVE-2022-21186 | ||||||
Summary | The package @acrontum/filesystem-template before 0.0.2 are vulnerable to Arbitrary Command Injection due to the fetchRepo API missing sanitization of the href field of external input. | ||||||
References | |||||||
Vulnerable Configurations |
|
||||||
CVSS |
|
||||||
CWE | NVD-CWE-Other | ||||||
CAPEC |
|
||||||
Access |
|
||||||
Impact |
|
||||||
Last major update | 08-08-2023 - 14:22 | ||||||
Published | 05-08-2022 - 05:15 | ||||||
Last modified | 08-08-2023 - 14:22 |