Description
This affects all versions of package npos-tesseract. The injection point is located in line 55 in lib/ocr.js.
Remediation
References
https://security.snyk.io/vuln/SNYK-JS-NPOSTESSERACT-1051031
Related Vulnerabilities
CVE-2021-23444 Vulnerability in npm package jointjs
CVE-2022-36097 Vulnerability in maven package org.xwiki.platform:xwiki-platform-attachment-ui
CVE-2019-11818 Vulnerability in maven package org.opencms:org.opencms.workplace.tools.accounts
CVE-2020-8116 Vulnerability in maven package org.webjars.npm:dot-prop
CVE-2022-26049 Vulnerability in maven package com.diffplug.gradle:goomph