2022-06-01 14:31:56
mitre
PUBLISHED
lifion-verify-dependencies through 1.1.0 is vulnerable to OS command injection via a crafted dependency name on the scanned projects package.json file.