CVE-2022-25962, GHSA-54jw-jqr9-6cj9
npm/vagrant.js
Command injection in vagrant.js
All versions of the package vagrant.js is vulnerable to Command Injection via the boxAdd function due to improper input sanitization.
All versions
Unfortunately, there is no solution available yet.
2023-01-27
source |