paypal/nemo-appium

Releases3

Frequency1 hour

Last Release over 10 years ago

Nemo plugin to start an appium server during nemo startup, kill upon driver.quit

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2022-21129 ↗	Jan 31, 2023Tuesday, 31 January 2023, 05:15	7.4 HIGH	—
Versions of the package nemo-appium before 0.0.9 are vulnerable to Command Injection due to improper input sanitization in the 'module.exports.setup' function. Note: In order to exploit this vulnerability appium-running 0.1.3 has to be installed as one of nemo-appium dependencies.