Filtered by vendor Kill-process-by-name Project Subscriptions
Filtered by product Kill-process-by-name Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2021-23356 1 Kill-process-by-name Project 1 Kill-process-by-name 2024-11-21 5.6 Medium
This affects all versions of package kill-process-by-name. If (attacker-controlled) user input is given, it is possible for an attacker to execute arbitrary commands. This is due to use of the child_process exec function without input sanitization in the index.js file.