VDB
KO
CRITICAL 9.8

GHSA-4v9w-pvwr-38h3

OS Command Injection in strong-nginx-controller

Details

strong-nginx-controller through 1.0.2 is vulnerable to Command Injection. It allows execution of arbitrary command as part of the '_nginxCmd()' function.

Are you affected?

Enter the version of the package you're using.

Affected packages

npm / strong-nginx-controller
Introduced in: 0

No fixed version published yet for strong-nginx-controller (npm). Pin to a known-safe version or switch to an alternative.

References