Description
The kill-port-process package version < 2.2.0 is vulnerable to a Command Injection vulnerability.
Remediation
References
https://hackerone.com/reports/661959
Related Vulnerabilities
CVE-2021-25978 Vulnerability in npm package apostrophe
CVE-2023-36542 Vulnerability in maven package org.apache.nifi:nifi-dbcp-service
CVE-2020-7608 Vulnerability in npm package yargs-parser
CVE-2020-28424 Vulnerability in npm package s3-kilatstorage
CVE-2021-44585 Vulnerability in maven package org.jeecgframework.boot:jeecg-boot-base