Back to search
CVE-2019-10799
Published: Feb 24, 2020
Modified: Aug 4, 2024
PUBLISHED
Description
compile-sass prior to 1.0.5 allows execution of arbritary commands. The function "setupCleanupOnExit(cssPath)" within "dist/index.js" is executed as part of the "rm" command without any sanitization.
| Vendor | Product | Versions |
|---|---|---|
n/a | compile-sass | affected All versions prior to 1.0.5 |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now