Description
Code injection vulnerability in blamer 1.0.0 and earlier may result in remote code execution when the input can be controlled by an attacker.
Remediation
References
https://hackerone.com/reports/772448
Related Vulnerabilities
CVE-2023-34104 Vulnerability in npm package fast-xml-parser
CVE-2019-11002 Vulnerability in npm package materialize-css
CVE-2023-5217 Vulnerability in npm package electron
CVE-2023-32070 Vulnerability in maven package org.xwiki.rendering:xwiki-rendering-xml
CVE-2022-33891 Vulnerability in maven package org.apache.spark:spark-core_2.13