Mversion
Monthly
The issue occurs because tagName user input is formatted inside the exec function is executed without any checks. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available.
In mversion before 2.0.0, there is a command injection vulnerability. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
The issue occurs because tagName user input is formatted inside the exec function is executed without any checks. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available.
In mversion before 2.0.0, there is a command injection vulnerability. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.