Remote code execution in vscode-npm-script · CVE-2021-26700 · GitHub Advisory Database · GitHub

Remote code execution in vscode-npm-script

Critical severity GitHub Reviewed Published May 24, 2022 to the GitHub Advisory Database • Updated Jan 27, 2023

Package

vscode-npm-script (npm)

Affected versions

>= 0.0.0

Patched versions

None

Description

Visual Studio Code npm-script Extension Remote Code Execution Vulnerability

References

Published by the National Vulnerability Database

Feb 25, 2021

Published to the GitHub Advisory Database May 24, 2022

Reviewed Jul 20, 2022

Last updated Jan 27, 2023