CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Kill-By-Port Project: >> Kill-By-Port >> 0.0.1 Security Vulnerabilities

CVE-2021-23363

This affects the package kill-by-port before 0.0.2. If (attacker-controlled) user input is given to the killByPort function, it is possible for an attacker to execute arbitrary commands. This is due to use of the child_process exec function without input sanitization.

CVSS Score

6.3

EPSS Score

0.012

Published

2021-03-30

Page 1

Vulnerabilities

Vulnerable Software

Kill-By-Port Project: >> Kill-By-Port >> 0.0.1 Security Vulnerabilities

Products

Pricing

Contact Us