GHSA-4v9w-pvwr-38h3CriticalCVSS 9.8

OS Command Injection in strong-nginx-controller

Published
February 10, 2022
Last Modified
July 6, 2026

🔗 CVE IDs covered (1)

📋 Description

strong-nginx-controller through 1.0.2 is vulnerable to Command Injection. It allows execution of arbitrary command as part of the '_nginxCmd()' function.

🎯 Affected products1

  • npm/strong-nginx-controller:<= 1.0.2

🔗 References (4)