erelsgl/limdu

Releases1

Frequency

Last Release almost 3 years ago

Stars1.05K

Machine-learning for Node.js

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2020-4066 ↗	Jun 22, 2020Monday, 22 June 2020, 16:15	3.8 LOW	9 HIGH
In Limdu before 0.95, the trainBatch function has a command injection vulnerability. Clients of the Limdu library are unlikely to be aware of this, so they might unwittingly write code that contains a vulnerability. This has been patched in 0.95.