CVE-2020-7782
Published
CVSS v3
9.8
CRITICAL
CVSS v2
7.5
HIGH
Affected
2
PROJECTS
Description
This affects all versions of package spritesheet-js. It depends on a vulnerable package platform-command. The injection point is located in line 32 in lib/generator.js, which is triggered by main entry of the package.
NPM
Command-line spritesheet generator supporting Starling / Sparrow, PIXI.js, Easel.js and cocos2d
GitHub