nadesiko3@3.0.66 vulnerabilities

Japanese Programming Language

Known vulnerabilities in the nadesiko3 package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
H Command Injection nadesiko3 is a Japanese Programming Language Affected versions of this package are vulnerable to Command Injection which allows a remote attacker to execute an arbitrary OS command when processing compression and decompression on the product. How to fix Command Injection? Upgrade `nadesiko3` to version 3.3.62 or higher.	<3.3.62
H Denial of Service (DoS) nadesiko3 is a Japanese Programming Language Affected versions of this package are vulnerable to Denial of Service (DoS) due to an improper check or handling of exceptional conditions vulnerability in `Nako3edit`, which allows a remote attacker to inject an invalid value to `decodeURIComponent`. How to fix Denial of Service (DoS)? Upgrade `nadesiko3` to version 3.3.75 or higher.	<3.3.75
H Command Injection nadesiko3 is a Japanese Programming Language Affected versions of this package are vulnerable to Command Injection as `Nako3edit` allows a remote attacker to obtain an `appkey` and execute arbitrary OS commands. How to fix Command Injection? Upgrade `nadesiko3` to version 3.3.75 or higher.	<3.3.75