CVE

CVE-2020-7712

CVE-2020-7712

This affects the package json before 10.0.0. It is possible to inject arbritary commands using the parseLookup function.

Source: CVE-2020-7712

Exit mobile version