tomato@0.0.7 vulnerabilities

tomato

Known vulnerabilities in the tomato package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
C Arbitrary Code Injection tomato is a Web framework based on Node.js. Affected versions of this package are vulnerable to Arbitrary Code Injection via the `/api/exec` endpoint. It does not validate user input allowing attackers to run arbitrary commands in the system. How to fix Arbitrary Code Injection? There is no fixed version for `tomato`.	*