Snyk has a published code exploit for this vulnerability.
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsAvoid using commmander
altogether.
commmander is a Malicious Package
Affected versions of this package are vulnerable to Malicious Package. The package is malware designed to take advantage of users making a mistake when typing the name of a module to install. Upon install the package attempts to start a cryptocurrency miner using coin-hive.