Vulnerability Details CVE-2020-28447
This affects all versions of package xopen. The injection point is located in line 14 in index.js in the exported function xopen(filepath)
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 34.5%
CVSS Severity
CVSS v3 Score 9.8
References
Products affected by CVE-2020-28447
-
cpe:2.3:a:xopen_project:xopen:*