CVE-2020-7607

Summary

gulp-styledocco through 0.0.3 allows execution of arbitrary commands. The argument 'options' of the exports function in 'index.js' can be controlled by users without any sanitization.

Affected Software

VendorProductVersion RangeStatus
n/agulp-styledoccoAll versions including 0.0.3affected

Weaknesses

  • Command Injection

ADP Enrichment

CVE Program Container

Additional References

References