CVE-2019-10801
Published
CVSS v3
9.8
CRITICAL
CVSS v2
7.5
HIGH
Affected
1
PROJECT
Description
enpeem through 2.2.0 allows execution of arbitrary commands. The "options.dir" argument is provided to the "exec" function without any sanitization.
Lightweight wrapper for accessing npm programmatically (alternative to adding `npm` as a dependency)
GitHub