CVE-2022-25908
Description
All versions of the package create-choo-electron are vulnerable to Command Injection via the devInstall function due to improper user-input sanitization.
References
ExploitThird Party Advisory
CvssV3 impact
Could not find any metrics
CvssV2 impact
Could not find any metrics