What the vulnerability does

01Description

A command injection vulnerability in the apex-publish-static-files npm module version <2.0.1 which allows arbitrary shell command execution through a maliciously crafted argument.

Key dates

02Disclosure timeline

October 30, 2018 CVE published
August 5, 2024 Record updated