CVE-2020-7784

Summary

This affects all versions of package ts-process-promises. The injection point is located in line 45 in main entry of package in lib/process-promises.js. The vulnerability is demonstrated with the following PoC:

Affected Software

VendorProductVersion RangeStatus
n/ats-process-promises0 < unspecifiedaffected

Weaknesses

  • command_injection

ADP Enrichment

CVE Program Container

Additional References

References