Description
An issue was discovered in Electerm 1.3.22, allows attackers to execute arbitrary code via unverified request to electerms service.
Recommendation
No fix is available yet. Followings are affected versions:
- <= 1.3.22
References
Related Issues
- xmlhttprequest and xmlhttprequest-ssl vulnerable to Arbitrary Code Injection - CVE-2020-28502
- Code Injection in jsen - CVE-2020-7777
- Code Injection in node-rules - CVE-2020-7609
- xmlhttprequest and xmlhttprequest-ssl vulnerable to Arbitrary Code Injection (GHSA-h4j5-c7cj-74xg) - CVE-2020-28502
- Tags:
- npm
- electerm
Anything's wrong? Let us know Last updated on January 28, 2023