Description
The package p4 before 0.0.7 are vulnerable to Command Injection via the run() function due to improper input sanitization
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2022-7664 | The package p4 before 0.0.7 are vulnerable to Command Injection via the run() function due to improper input sanitization |
Github GHSA |
GHSA-jfm8-hwhg-r6gg | p4 vulnerable to Command Injection due to improper input sanitization |
References
History
Wed, 16 Apr 2025 15:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Status: PUBLISHED
Assigner: snyk
Published:
Updated: 2025-04-16T14:42:51.719Z
Reserved: 2022-02-24T00:00:00.000Z
Link: CVE-2022-25171
Updated: 2024-08-03T04:36:06.505Z
Status : Modified
Published: 2022-12-20T05:15:11.260
Modified: 2026-06-17T04:33:08.740
Link: CVE-2022-25171
No data.
OpenCVE Enrichment
No data.
Weaknesses
-
CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
EUVD
Github GHSA