GHSA-w868-4576-rv24, CVE-2020-28446
npm/ntesseract
Improper Neutralization of Special Elements used in a Command ('Command Injection')
The package ntesseract before 0.2.9 is vulnerable to Command Injection via lib/tesseract.js.
All versions before 0.2.9
Upgrade to version 0.2.9 or above.
2022-08-03
source |