Skip to main content

Eslint Fixer

1 CVEs product

Monthly

CVE-2021-26275 npm CRITICAL POC Act Now

The eslint-fixer package through 0.1.5 for Node.js allows command injection via shell metacharacters to the fix function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Node.js Command Injection Eslint Fixer
NVD
CVSS 3.1
9.8
EPSS
3.0%
EPSS 3% CVSS 9.8
CRITICAL POC Act Now

The eslint-fixer package through 0.1.5 for Node.js allows command injection via shell metacharacters to the fix function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Node.js Command Injection Eslint Fixer
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy