dottgonzo/node-promise-probe

Releases13

Frequency2 months 4 weeks

Last Release over 5 years ago

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2019-10791 ↗	Feb 18, 2020Tuesday, 18 February 2020, 17:15	9.8 CRITICAL	7.5 HIGH
promise-probe before 0.10.0 allows remote attackers to perform a command injection attack. The file, outputFile and options functions can be controlled by users without any sanitization.