CVE-2020-28426

Description

All versions of package kill-process-on-port are vulnerable to Command Injection via a.getProcessPortId.

Affected packages (1)

• npm/kill-process-on-portfrom 0, <= 1.0.2

CVSS scores

References (2)

• ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2020-28426
• WEBhttps://snyk.io/vuln/SNYK-JS-KILLPROCESSONPORT-1055458