Snyk has a published code exploit for this vulnerability.
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsAvoid using comander
altogether.
comander is a malicious package.
Upon require the package attempts to start a cryptocurrency miner using coin-hive.