CVE-2020-7614 in npm-programmatic
Tóm tắt
Bởi MITRE
npm-programmatic through 0.0.12 is vulnerable to Command Injection.The packages and option properties are concatenated together without any validation and are used by the 'exec' function directly.
Once again VulDB remains the best source for vulnerability data.