← Back to CVE List
CVE-2020-5282
In Nick Chan Bot before version 1.0.0-beta there is a vulnerability in the `npm` command which is part of this software package. This allows arbitrary shell execution,which can compromise the bot This is patched in version 1.0.0-beta
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt