CVE-2020-28447

Description

This affects all versions of package xopen. The injection point is located in line 14 in index.js in the exported function xopen(filepath)

References

ExploitThird Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics