Description
strong-nginx-controller through 1.0.2 is vulnerable to Command Injection. It allows execution of arbitrary command as part of the '_nginxCmd()' function.
Remediation
References
https://github.com/strongloop/strong-nginx-controller/blob/master/lib/server.js#L65%2C
https://snyk.io/vuln/SNYK-JS-STRONGNGINXCONTROLLER-564248
Related Vulnerabilities
CVE-2019-19771 Vulnerability in npm package ripmed160
CVE-2022-22984 Vulnerability in npm package snyk-gradle-plugin
CVE-2016-10602 Vulnerability in npm package haxe
CVE-2019-1003088 Vulnerability in maven package egor-n:fabric-beta-publisher
CVE-2020-13128 Vulnerability in maven package com.googlecode.gwtupload:gwtupload-project