codiad/codiad is vulnerable to remote code execution (RCE) attacks. The library does not properly escape the filepath, allowing a malicious user to inject and execute arbitrary system commands. This CVE is different from CVE-2017-11366 and CVE-2017-15689.
CPE | Name | Operator | Version |
---|---|---|---|
codiad/codiad | eq | 1.3.6 |