Identifier

CVE-2020-7712

Package Slug

npm/json

Vulnerability

OS Command Injection

Description

This affects the package json. It is possible to inject arbritary commands using the parseLookup function.

Affected Versions

All versions before 10.0.0

Solution

Upgrade to version 10.0.0 or above.

Last Modified

2020-09-04

source