Closure-Compiler-Stream Project: >> Closure-Compiler-Stream >> 0.1.2 Security Vulnerabilities
closure-compiler-stream through 0.1.15 allows execution of arbitrary commands. The argument "options" of the exports function in "index.js" can be controlled by users without any sanitization.
CVSS Score
9.8
EPSS Score
0.004
Published
2020-03-15