Description
An issue was discovered in the packageCmd function in shenzhim aaptjs 1.3.1, allows attackers to execute arbitrary code via the filePath parameters.
Remediation
References
https://github.com/shenzhim/aaptjs/issues/2
Related Vulnerabilities
CVE-2022-21718 Vulnerability in npm package electron
CVE-2019-10744 Vulnerability in maven package org.webjars:lodash
CVE-2018-16479 Vulnerability in npm package http-live-simulator
CVE-2022-25878 Vulnerability in maven package org.webjars.npm:protobufjs
CVE-2016-10531 Vulnerability in maven package org.webjars.npm:marked