Description
An issue was discovered in the remove function in shenzhim aaptjs 1.3.1, allows attackers to execute arbitrary code via the filePath parameters.
Remediation
References
https://github.com/shenzhim/aaptjs/issues/2
Related Vulnerabilities
CVE-2023-30517 Vulnerability in maven package io.jenkins.plugins:neuvector-vulnerability-scanner
CVE-2021-23440 Vulnerability in npm package set-value
CVE-2022-25171 Vulnerability in npm package p4
CVE-2018-14042 Vulnerability in maven package org.webjars:bootstrap
CVE-2019-13127 Vulnerability in maven package org.webjars.bowergithub.jgraph:mxgraph