Description
All versions of package kill-process-on-port are vulnerable to Command Injection via a.getProcessPortId.
Remediation
References
https://snyk.io/vuln/SNYK-JS-KILLPROCESSONPORT-1055458
Related Vulnerabilities
CVE-2023-26156 Vulnerability in maven package org.webjars.npm:chromedriver
CVE-2022-24820 Vulnerability in maven package org.xwiki.platform:xwiki-platform-web
CVE-2020-24616 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind
CVE-2020-26870 Vulnerability in maven package org.webjars.bowergithub.cure53:dompurify
CVE-2022-1243 Vulnerability in maven package org.webjars.npm:urijs