CVE-2020-7730
Command Injection in npm/bestzip
Identifiers
CVE-2020-7730
Package Slug
npm/bestzip
Vulnerability
Command Injection
Description
The package bestzip is vulnerable to Command Injection via the options param.
Affected Versions
All versions before 2.1.7
Solution
Upgrade to version 2.1.7 or above.
Last Modified
2020-09-17
| source |