GHSA-pmgm-h3cc-m4hj, CVE-2024-25466
npm/react-native-document-picker
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Directory Traversal vulnerability in React Native Document Picker before v.9.1.1 and fixed in v.9.1.1 allows a local attacker to execute arbitrary code via a crafted script to the Android library component.
All versions before 9.1.1
Upgrade to version 9.1.1 or above.
2024-02-19
source |