GHSA-74wf-cwjg-9cf2, CVE-2020-28447
npm/xopen
Improper Neutralization of Special Elements used in a Command ('Command Injection')
This affects all versions of package xopen. The injection point is located in line 14 in index.js in the exported function xopen(filepath)
All versions up to 1.0.0
Unfortunately, there is no solution available yet.
2022-08-09
source |