VYPR

npm package

@ronomon/opened

pkg:npm/%40ronomon/opened

Vulnerabilities (1)

  • CVE-2021-29300May 24, 2021
    affected < 1.5.2fixed 1.5.2

    The @ronomon/opened library before 1.5.2 is vulnerable to a command injection vulnerability which would allow a remote attacker to execute commands on the system if the library was used with untrusted input.