jscover

vulnerability command injection
severity 5.9
language javascript
registry npm

Overview

jscover is a node wrap for JSCover.

This package is vulnerable to Command Injection. The source argument can be controlled by users without any sanitization.