port-killer@1.0.0 vulnerabilities
Kills the process running on a given port (assuming you have permission to do so)
-
latest version
1.0.1
-
first published
7 years ago
-
latest version published
7 years ago
-
licenses detected
- >=0
Direct Vulnerabilities
Known vulnerabilities in the port-killer package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
port-killer is a Kills the process running on a given port (assuming you have permission to do so) Affected versions of this package are vulnerable to Arbitrary Command Injection. If (attacker-controlled) user input is given, it is possible for an attacker to execute arbitrary commands.
This is due to use of the Running this PoC will cause the command PoC (provided by reporter):
How to fix Arbitrary Command Injection? There is no fixed version for |
*
|