Identifier

CVE-2020-7675

Package Slug

npm/cd-messenger

Vulnerability

Improper Input Validation

Description

cd-messenger is vulnerable to Arbitrary Code Execution. User input provided to the color argument executed by the eval function resulting in code execution.

Affected Versions

All versions up to 2.7.26

Solution

Unfortunately, there is no solution available yet.

Last Modified

2020-06-17

source