Description
All versions of the package wifey are vulnerable to Command Injection via the connect() function due to improper input sanitization.
Remediation
References
https://security.snyk.io/vuln/SNYK-JS-WIFEY-3175615
Related Vulnerabilities
CVE-2020-8127 Vulnerability in maven package org.webjars.npm:reveal.js
CVE-2019-10759 Vulnerability in maven package org.webjars.npm:safer-eval
CVE-2021-29943 Vulnerability in maven package org.apache.solr:solr-core
CVE-2010-0684 Vulnerability in maven package org.apache.activemq:activemq-web
CVE-2023-46998 Vulnerability in maven package org.webjars.bower:bootbox.js