CVE-2022-25962
Command injection in vagrant.js in npm/vagrant.js
Identifiers
CVE-2022-25962, GHSA-54jw-jqr9-6cj9
Package Slug
npm/vagrant.js
Vulnerability
Command injection in vagrant.js
Description
All versions of the package vagrant.js is vulnerable to Command Injection via the boxAdd function due to improper input sanitization.
Affected Versions
All versions
Solution
Unfortunately, there is no solution available yet.
Last Modified
2023-01-27
| source |