CVE-2020-7730
npm/bestzip
Command Injection
The package bestzip is vulnerable to Command Injection via the options param.
param
All versions before 2.1.7
Upgrade to version 2.1.7 or above.
2020-09-17