CVE-2019-10789

Summary

All versions of curling.js are vulnerable to Command Injection via the run function. The command argument can be controlled by users without any sanitization.

Affected Software

VendorProductVersion RangeStatus
n/acurling.jsAll versionsaffected

Weaknesses

  • Command Injection

ADP Enrichment

CVE Program Container

Additional References

References