Arbitrary Code Injection
Affecting org.webjars.npm:growl artifact, versions (,1.10.0)Report new vulnerabilities
org.webjars.npm:growl is a package adding Growl support for Nodejs.
Affected versions of this package are vulnerable to Arbitrary Code Injection due to unsafe use of the
eval() function. Node.js provides the
org.webjars.npm:growl to version 1.10.0 or higher.