Description
All versions of the package wifey are vulnerable to Command Injection via the connect() function due to improper input sanitization.
Remediation
References
https://security.snyk.io/vuln/SNYK-JS-WIFEY-3175615
Related Vulnerabilities
CVE-2010-1870 Vulnerability in maven package org.apache.struts:struts2-core
CVE-2023-28155 Vulnerability in maven package org.webjars.npm:request
CVE-2020-28270 Vulnerability in npm package object-hierarchy-access
CVE-2010-1330 Vulnerability in maven package org.jruby:jruby
CVE-2022-24818 Vulnerability in maven package org.geotools:gt-metadata