Affecting org.webjars.npm:nodemailer artifact, versions [0.0.0,]Report new vulnerabilities
org.webjars.npm:nodemailer is an Easy as cake e-mail sending from your Node.js applications
Affected versions of this package are vulnerable to Command Injection. Use of crafted recipient email addresses may result in arbitrary command flag injection in sendmail transport for sending mails.
-firstname.lastname@example.org (-bi Initialize the alias database.) -email@example.com (The option -d0.1 prints the version of sendmail and the options it was compiled with.) -Dfilename@example.com (Debug output ffile)
There is no fixed version for