Description
All versions of package launchpad are vulnerable to Command Injection via stop.
Recommendation
No fix is available yet. Followings are affected versions:
- <= 0.7.5
References
Related Issues
- lobe-chat has an Open Redirect - CVE-2025-59426
- Cross-site Scripting in cesium - CVE-2023-48094
- Command Injection in node-rules - Vulnerability
- Cross-site Scripting in epubjs - CVE-2021-33040
- Tags:
- npm
- launchpad
Anything's wrong? Let us know Last updated on January 27, 2023