im-resize up to and including 2.3.2 allows remote malicious users to execute arbitrary commands via the "exec" argument. The cmd argument used within index.js, can be controlled by user without any sanitization.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dnt im-resize |