hgarcia/curling

Releases0

Stars2

A node wrapper for curl with a very simple api.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2019-10789 ↗	Feb 6, 2020Thursday, 6 February 2020, 16:15	9.8 CRITICAL	10 HIGH
All versions of curling.js are vulnerable to Command Injection via the run function. The command argument can be controlled by users without any sanitization.