WEB APPLICATION VULNERABILITIES SCA (Software Composition Analysis)

CVE-2020-28426 Vulnerability in npm package kill-process-on-port

Description

All versions of package kill-process-on-port are vulnerable to Command Injection via a.getProcessPortId.

Remediation

References

https://snyk.io/vuln/SNYK-JS-KILLPROCESSONPORT-1055458

Related Vulnerabilities

CVE-2023-25572 Vulnerability in npm package ra-ui-materialui

CVE-2022-28158 Vulnerability in maven package com.surenpi.jenkins:phoenix-autotest

CVE-2020-8910 Vulnerability in maven package org.webjars.npm:google-closure-library

CVE-2022-37767 Vulnerability in maven package io.pebbletemplates:pebble

CVE-2022-25898 Vulnerability in maven package org.webjars.bowergithub.kjur:jsrsasign

Severity

Critical

Classification

CWE-78

Tags

Exploit Third Party Advisory