All versions of package font-converter are vulnerable to Arbitrary Command Injection due to missing sanitization of input that potentially flows into the child_process.exec() function.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
font converter project font converter 1.0.0 |
||
font converter project font converter 1.1.0 |
||
font converter project font converter 1.1.1 |