The eslint-fixer package through 0.1.5 for Node.js allows command injection via shell metacharacters to the fix function. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. The ozum/eslint-fixer GitHub repository has been intentionally deleted
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| eslint-fixer(npm) | 0 | N/A | N/A |
CVSS Metrics
