Description
All versions of package kill-process-on-port are vulnerable to Command Injection via a.getProcessPortId.
Remediation
References
https://snyk.io/vuln/SNYK-JS-KILLPROCESSONPORT-1055458
Related Vulnerabilities
CVE-2017-12615 Vulnerability in maven package org.apache.tomcat:tomcat-catalina
CVE-2022-38369 Vulnerability in maven package org.apache.iotdb:iotdb-server
CVE-2022-0355 Vulnerability in npm package simple-get
CVE-2021-21266 Vulnerability in maven package org.openhab.addons.bundles:org.openhab.binding.gce
CVE-2021-29485 Vulnerability in maven package io.ratpack:ratpack-session