Find real vulnerabilities before they ship
Vulnerability Database › npm › CVE-2025-57283
The Node.js package browserstack-local 1.5.8 contains a command injection vulnerability. This occurs because the logfile variable is not properly sanitized in lib/Local.js.
Base Score