Description
The kill-port-process package version < 2.2.0 is vulnerable to a Command Injection vulnerability.
Remediation
References
https://hackerone.com/reports/661959
Related Vulnerabilities
CVE-2021-42697 Vulnerability in maven package com.typesafe.akka:akka-http_2.13
CVE-2021-23624 Vulnerability in npm package dotty
CVE-2021-43859 Vulnerability in maven package com.thoughtworks.xstream:xstream
CVE-2020-26302 Vulnerability in maven package org.webjars.bower:is_js
CVE-2021-31812 Vulnerability in maven package org.apache.pdfbox:pdfbox