CVE-2020-7601
CVE-2020-7601
gulp-scss-lint through 1.0.0 allows execution of arbitrary commands. It is possible to inject arbitrary commands to the "exec" function located in "src/command.js" via the provided options.
Affected products
n/a · gulp-scss-lintWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →