kill-port@1.2.0 vulnerabilities
Kill process running on given port
-
latest version
2.0.1
-
latest non vulnerable version
-
first published
7 years ago
-
latest version published
2 years ago
-
licenses detected
- >=0
Direct Vulnerabilities
Known vulnerabilities in the kill-port package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
kill-port Kills the process running on given port. Affected versions of this package are vulnerable to Arbitrary Command Injection. If an attacker can control the port, which in itself is a very sensitive value, they can inject arbitrary OS commands due to the usage of the exec function in a third-party module. How to fix Arbitrary Command Injection? Upgrade |
<1.3.2
|