Description
The gnuplot package prior to version 0.1.0 for Node.js allows code execution via shell metacharacters in Gnuplot commands.
Remediation
References
https://github.com/rkesters/gnuplot/commit/23671d4d3d28570fb19a936a6328bfac742410de
https://www.npmjs.com/package/%40rkesters/gnuplot
Related Vulnerabilities
CVE-2022-45393 Vulnerability in maven package org.jenkins-ci.plugins:delete-log-plugin
CVE-2020-11023 Vulnerability in maven package org.webjars:jquery
CVE-2021-23370 Vulnerability in npm package swiper
CVE-2017-16137 Vulnerability in maven package org.webjars.npm:debug
CVE-2020-26256 Vulnerability in maven package org.webjars.npm:fast-csv