Github Todos
1 CVEs
product
Monthly
naholyr github-todos 3.1.0 is vulnerable to command injection. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
Command Injection
Github Todos
NVD
GitHub
CVSS 3.1
9.8
EPSS
2.6%
CVE-2021-44684
npm
EPSS 3%
CVSS 9.8
CRITICAL
POC
Act Now
naholyr github-todos 3.1.0 is vulnerable to command injection. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
Command Injection
Github Todos
NVD
GitHub