Lack of output sanitization allowed an attack to execute arbitrary shell commands via the logkitty npm package before version 0.7.1.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://hackerone.com/reports/825729 |
![]() ![]() |
History
No history.

Status: PUBLISHED
Assigner: hackerone
Published: 2020-05-15T18:50:27
Updated: 2024-08-04T09:48:25.725Z
Reserved: 2020-01-28T00:00:00
Link: CVE-2020-8149

No data.

Status : Modified
Published: 2020-05-15T19:15:12.540
Modified: 2024-11-21T05:38:23.303
Link: CVE-2020-8149

No data.