Security Advisory

CVE-2019-10799

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-02-24 17:42:03

Last updated 2024-08-04 22:32:02

Assigner snyk

State PUBLISHED

Description

compile-sass prior to 1.0.5 allows execution of arbritary commands. The function "setupCleanupOnExit(cssPath)" within "dist/index.js" is executed as part of the "rm" command without any sanitization.

← Browse all CVEs View on cve.org ↗