Description
An issue was discovered in Electerm 1.3.22, allows attackers to execute arbitrary code via unverified request to electerms service.
Remediation
References
https://github.com/electerm/electerm/issues/1686
Related Vulnerabilities
CVE-2020-7682 Vulnerability in npm package marked-tree
CVE-2020-7788 Vulnerability in npm package ini
CVE-2020-7782 Vulnerability in npm package spritesheet-js
CVE-2022-35915 Vulnerability in maven package org.webjars.npm:openzeppelin__contracts
CVE-2019-15608 Vulnerability in maven package org.webjars.npm:yarn