mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-10 03:37:37 +02:00
0xMarcio
739 B
739 B
CVE-2020-7673
Description
node-extend through 0.2.0 is vulnerable to Arbitrary Code Execution. User input provided to the argument A of extend function(A,B,as,isAargs) located within lib/extend.js is executed by the eval function, resulting in code execution.
POC
Reference
Github
No PoCs found on GitHub currently.