Npm-programmatic Project Npm-programmatic — known CVE vulnerabilities
Every CVE whose affected-product data names Npm-programmatic Project Npm-programmatic, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
CVE-2020-7614 — CVSS 9.8 (critical): npm-programmatic through 0.0.12 is vulnerable to Command Injection.The packages and option properties are concatenated together without any…