CVE-2022-21186 – The package @acrontum/filesystem-template before 0.0.2 are vulnerable to Arbitrary Command …

5 August 2022

Vuln ID: CVE-2022-21186

Published: 2022-08-05 05:15:07Z

Description: The package @acrontum/filesystem-template before 0.0.2 are vulnerable to Arbitrary Command Injection due to the fetchRepo API missing sanitization of the href field of external input.

Source: NVD.NIST.GOV

Date:

5 August 2022

Categorie(s):

NVD

Tag(s):

NVD

Second time lucky for Thoma Bravo, which scoops up Darktrace for $5.3B26 April 2024
AI sparks increasing cyber concerns for execs amid growing adoption26 April 2024
More details on rural water system breach sought by legislators26 April 2024
Updated CISA exploited vulnerabilties catalog includes Windows print spooler bug26 April 2024
Severe Flaws Disclosed in Brocade SANnav SAN Management Software26 April 2024