CVE-2020-28446
Improper Neutralization of Special Elements used in a Command ('Command Injection') in npm/ntesseract
Identifiers
GHSA-w868-4576-rv24, CVE-2020-28446
Package Slug
npm/ntesseract
Vulnerability
Improper Neutralization of Special Elements used in a Command ('Command Injection')
Description
The package ntesseract before 0.2.9 is vulnerable to Command Injection via lib/tesseract.js.
Affected Versions
All versions before 0.2.9
Solution
Upgrade to version 0.2.9 or above.
Last Modified
2022-08-03
| source |