Skip to main content

Mversion

2 CVEs product

Monthly

CVE-2020-7688 npm HIGH POC PATCH This Week

The issue occurs because tagName user input is formatted inside the exec function is executed without any checks. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available.

Command Injection Mversion
NVD GitHub
CVSS 3.1
7.8
EPSS
0.5%
CVE-2020-4059 npm HIGH PATCH This Week

In mversion before 2.0.0, there is a command injection vulnerability. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Node.js RCE Command Injection Mversion
NVD GitHub
CVSS 3.1
7.3
EPSS
2.6%
EPSS 1% CVSS 7.8
HIGH POC PATCH This Week

The issue occurs because tagName user input is formatted inside the exec function is executed without any checks. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available.

Command Injection Mversion
NVD GitHub
EPSS 3% CVSS 7.3
HIGH PATCH This Week

In mversion before 2.0.0, there is a command injection vulnerability. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Node.js RCE Command Injection +1
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy