lib/cmd.js in the node-windows package prior to 1.0.0-beta.6 for Node.js allows command injection via the PID parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
node-windows project node-windows |
||
node-windows project node-windows 1.0.0 |