node-df

vulnerability command injection
severity 3.8
language javascript
registry npm

Overview

Affected versions of this package are vulnerable to Command Injection. The issue occurs because a user input is concatenated inside a command that will be executed without any check.