CVEs-PoC/2017/CVE-2017-16225.md

### [CVE-2017-16225](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16225)
![](https://img.shields.io/static/v1?label=Product&message=aegir%20node%20module&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3E%3D12.0.0%20%3C%3D%2012.0.7%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Information%20Disclosure%20(CWE-200)&color=brightgreen)

### Description

aegir is a module to help automate JavaScript project management. Version 12.0.0 through and including 12.0.7 bundled and published to npm the user (that performed a aegir-release) GitHub token.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/ARPSyndicate/cvemon