• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-78

CVE-2020-7778

February 26, 2023 by

This affects the package systeminformation before 4.30.2. The attacker can overwrite the properties and functions of an object, which can lead to executing OS commands.

CVE-2020-7781

February 26, 2023 by

This affects the package connection-tester before 0.2.1. The injection point is located in line 15 in index.js. The following PoC demonstrates the vulnerability:

CVE-2020-7782

February 26, 2023 by

This affects all versions of package spritesheet-js. It depends on a vulnerable package platform-command. The injection point is located in line 32 in lib/generator.js, which is triggered by main entry of the package.

CVE-2020-7784

February 26, 2023 by

This affects all versions of package ts-process-promises. The injection point is located in line 45 in main entry of package in lib/process-promises.js. The vulnerability is demonstrated with the following PoC:

CVE-2020-7785

February 26, 2023 by

This affects all versions of package node-ps. The injection point is located in line 72 in lib/index.js.

CVE-2020-7786

February 26, 2023 by

This affects all versions of package macfromip. The injection point is located in line 66 in macfromip.js.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 72
  • Go to page 73
  • Go to page 74
  • Go to page 75
  • Go to page 76
  • Interim pages omitted …
  • Go to page 342
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE