CVE-2020-7624

CVE-2020-7624

EPSS 4.1%

effect through 1.0.4 is vulnerable to Command Injection. It allows execution of arbitrary command via the options argument.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/Javascipt/effect/blob/master/helper.js#L24%2C https://snyk.io/vuln/SNYK-JS-EFFECT-564256