CVE-2022-25908, GHSA-j8wr-fwf2-vvr9
npm/create-choo-electron
Command Injection in create-choo-electron
All versions of the package create-choo-electron is vulnerable to Command Injection via the devInstall function due to improper user-input sanitization.
All versions
Unfortunately, there is no solution available yet.
2023-01-27
source |