tonini/alchemist-server

Releases0

Stars192

Editor/IDE independent background server to inform about Elixir mix projects

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2017-1000212 ↗	Nov 17, 2017Friday, 17 November 2017, 15:29	—	7.5 HIGH
Elixir's vim plugin, alchemist.vim is vulnerable to remote code execution in the bundled alchemist-server. A malicious website can execute requests against an ephemeral port on localhost that are then evaluated as elixir code.