Turistforeningen/node-im-resize

Releases11

Frequency2 months 6 hours

Last Release over 9 years ago

Stars19

Efficient image resize with multiple versions support

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2019-10787 ↗	Feb 4, 2020Tuesday, 4 February 2020, 21:15	9.8 CRITICAL	10 HIGH
im-resize through 2.3.2 allows remote attackers to execute arbitrary commands via the "exec" argument. The cmd argument used within index.js, can be controlled by user without any sanitization.