[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2024-27980":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":52,"aliases":53,"duplicate_of":9,"upstream":54,"downstream":55,"duplicates":68,"related":69,"reserved_at":9,"published_at":84,"modified_at":85,"state":86,"summary":87,"references_raw":96,"kevs":118,"epss":119,"epss_history":122,"metrics":381,"affected":389},"CVE-2024-27980","Due to the improper handling of batch files in child_process.spawn / child_process.spawnSync, a malicious command line argument can inject arbitrary commands and achieve code execution even if the shell option is not enabled.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-77","Improper Neutralization of Special Elements used in a Command ('Command Injection')","The product constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component.","weakness","Draft","Class","High",[20,24,28,32,36,40,44,48],{"id":21,"name":22,"techniques":23},"CAPEC-136","LDAP Injection",[],{"id":25,"name":26,"techniques":27},"CAPEC-15","Command Delimiters",[],{"id":29,"name":30,"techniques":31},"CAPEC-183","IMAP/SMTP Command Injection",[],{"id":33,"name":34,"techniques":35},"CAPEC-248","Command Injection",[],{"id":37,"name":38,"techniques":39},"CAPEC-40","Manipulating Writeable Terminal Devices",[],{"id":41,"name":42,"techniques":43},"CAPEC-43","Exploiting Multiple Input Interpretation Layers",[],{"id":45,"name":46,"techniques":47},"CAPEC-75","Manipulating Writeable Configuration Files",[],{"id":49,"name":50,"techniques":51},"CAPEC-76","Manipulating Web Input to File System Calls",[],[],[],[],[56,58,60,62,64,66],{"_key":57},"SUSE-SU-2024:2496-1",{"_key":59},"SUSE-SU-2024:2542-1",{"_key":61},"SUSE-SU-2024:2543-1",{"_key":63},"SUSE-SU-2024:2574-1",{"_key":65},"OPENSUSE-SU-2024:14025-1",{"_key":67},"OPENSUSE-SU-2024:14214-1",[],[70,71,72,73,74,75,76,78,80,82],{"_key":57},{"_key":59},{"_key":61},{"_key":63},{"_key":65},{"_key":67},{"_key":77},"CGA-5H2H-M8P6-8H83",{"_key":79},"CGA-5QCV-F6CG-WPCW",{"_key":81},"CGA-W9CR-QC36-RW96",{"_key":83},"CGA-MR3G-56M3-2W4M","2025-01-09T00:33:47.722Z","2025-04-30T22:25:25.133Z","Deferred",{"cisa_kev":88,"cisa_ransomware":88,"cisa_vendor":9,"epss_severity":89,"epss_score":90,"severity":91,"severity_score":92,"severity_version":93,"severity_source":94,"severity_vector":95,"severity_status":86},false,"low",0.00369,"high",8.1,"v3.0","cve.org","CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",[97,102,106,110,114],{"url":98,"sources":99,"tags":101},"http://www.openwall.com/lists/oss-security/2024/04/10/15",[94,100],"nvd",[],{"url":103,"sources":104,"tags":105},"http://www.openwall.com/lists/oss-security/2024/07/11/6",[94,100],[],{"url":107,"sources":108,"tags":109},"http://www.openwall.com/lists/oss-security/2024/07/19/3",[94,100],[],{"url":111,"sources":112,"tags":113},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5MZN6PFXHTCCUENAKZXTGWPKUAHI6E2W/",[94,100],[],{"url":115,"sources":116,"tags":117},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JUWBYDVCUSCX7YWTBX75LADMCVYFBGKU/",[94,100],[],[],{"date":120,"score":90,"percentile":121},"2026-06-04",0.59101,[123,127,131,134,137,140,143,146,149,152,155,158,160,163,166,170,173,176,179,182,185,188,191,193,196,199,202,205,209,212,215,218,221,224,227,230,233,236,238,240,243,245,248,250,252,255,257,260,263,266,269,271,274,277,279,282,285,288,291,294,297,300,302,305,308,311,314,317,320,323,325,328,331,334,337,340,343,345,347,350,353,356,359,362,365,368,371,373,376,378],{"date":124,"score":125,"percentile":126},"2025-11-04",0.00244,0.47598,{"date":128,"score":129,"percentile":130},"2025-11-05",0.00272,0.50373,{"date":132,"score":129,"percentile":133},"2025-11-06",0.50383,{"date":135,"score":129,"percentile":136},"2025-11-07",0.50409,{"date":138,"score":129,"percentile":139},"2025-11-08",0.5041,{"date":141,"score":129,"percentile":142},"2025-11-09",0.50398,{"date":144,"score":129,"percentile":145},"2025-11-10",0.50367,{"date":147,"score":129,"percentile":148},"2025-11-11",0.50381,{"date":150,"score":129,"percentile":151},"2025-11-12",0.50406,{"date":153,"score":129,"percentile":154},"2025-11-13",0.50412,{"date":156,"score":129,"percentile":157},"2025-11-14",0.5042,{"date":159,"score":129,"percentile":154},"2025-11-15",{"date":161,"score":129,"percentile":162},"2025-11-16",0.50393,{"date":164,"score":129,"percentile":165},"2025-11-17",0.5037,{"date":167,"score":168,"percentile":169},"2025-11-18",0.04934,0.8857,{"date":171,"score":168,"percentile":172},"2025-11-19",0.88573,{"date":174,"score":168,"percentile":175},"2025-11-20",0.88577,{"date":177,"score":129,"percentile":178},"2025-11-21",0.50378,{"date":180,"score":129,"percentile":181},"2025-11-22",0.50371,{"date":183,"score":129,"percentile":184},"2025-11-23",0.50333,{"date":186,"score":129,"percentile":187},"2025-11-24",0.50321,{"date":189,"score":129,"percentile":190},"2025-11-25",0.50328,{"date":192,"score":129,"percentile":187},"2025-11-26",{"date":194,"score":129,"percentile":195},"2025-11-27",0.50326,{"date":197,"score":129,"percentile":198},"2025-11-28",0.50292,{"date":200,"score":129,"percentile":201},"2025-11-29",0.50269,{"date":203,"score":129,"percentile":204},"2025-11-30",0.50257,{"date":206,"score":207,"percentile":208},"2025-12-01",0.0019,0.411,{"date":210,"score":207,"percentile":211},"2025-12-02",0.41107,{"date":213,"score":207,"percentile":214},"2025-12-03",0.41108,{"date":216,"score":129,"percentile":217},"2025-12-04",0.5027,{"date":219,"score":129,"percentile":220},"2025-12-05",0.50293,{"date":222,"score":129,"percentile":223},"2025-12-06",0.5029,{"date":225,"score":129,"percentile":226},"2025-12-07",0.50281,{"date":228,"score":129,"percentile":229},"2025-12-08",0.50276,{"date":231,"score":129,"percentile":232},"2025-12-09",0.50295,{"date":234,"score":129,"percentile":235},"2025-12-10",0.50363,{"date":237,"score":129,"percentile":148},"2025-12-11",{"date":239,"score":129,"percentile":139},"2025-12-12",{"date":241,"score":129,"percentile":242},"2025-12-13",0.50396,{"date":244,"score":129,"percentile":178},"2025-12-14",{"date":246,"score":129,"percentile":247},"2025-12-15",0.50362,{"date":249,"score":129,"percentile":181},"2025-12-16",{"date":251,"score":129,"percentile":142},"2025-12-17",{"date":253,"score":129,"percentile":254},"2025-12-18",0.50439,{"date":256,"score":129,"percentile":254},"2025-12-19",{"date":258,"score":129,"percentile":259},"2025-12-20",0.50401,{"date":261,"score":129,"percentile":262},"2025-12-21",0.50374,{"date":264,"score":129,"percentile":265},"2025-12-22",0.50355,{"date":267,"score":129,"percentile":268},"2025-12-23",0.50353,{"date":270,"score":129,"percentile":247},"2025-12-24",{"date":272,"score":129,"percentile":273},"2025-12-25",0.50413,{"date":275,"score":129,"percentile":276},"2025-12-26",0.50402,{"date":278,"score":129,"percentile":273},"2025-12-27",{"date":280,"score":129,"percentile":281},"2025-12-28",0.50344,{"date":283,"score":129,"percentile":284},"2025-12-29",0.50331,{"date":286,"score":129,"percentile":287},"2025-12-30",0.50327,{"date":289,"score":129,"percentile":290},"2025-12-31",0.50365,{"date":292,"score":207,"percentile":293},"2026-01-01",0.41224,{"date":295,"score":207,"percentile":296},"2026-01-02",0.41202,{"date":298,"score":207,"percentile":299},"2026-01-03",0.41194,{"date":301,"score":129,"percentile":190},"2026-01-04",{"date":303,"score":129,"percentile":304},"2026-01-05",0.5031,{"date":306,"score":129,"percentile":307},"2026-01-06",0.50318,{"date":309,"score":129,"percentile":310},"2026-01-07",0.5033,{"date":312,"score":129,"percentile":313},"2026-01-08",0.50354,{"date":315,"score":129,"percentile":316},"2026-01-09",0.50338,{"date":318,"score":129,"percentile":319},"2026-01-10",0.50334,{"date":321,"score":129,"percentile":322},"2026-01-11",0.50313,{"date":324,"score":129,"percentile":217},"2026-01-12",{"date":326,"score":129,"percentile":327},"2026-01-13",0.50246,{"date":329,"score":129,"percentile":330},"2026-01-14",0.50294,{"date":332,"score":129,"percentile":333},"2026-01-15",0.50298,{"date":335,"score":129,"percentile":336},"2026-01-16",0.50319,{"date":338,"score":129,"percentile":339},"2026-01-17",0.50297,{"date":341,"score":129,"percentile":342},"2026-01-18",0.50272,{"date":344,"score":129,"percentile":327},"2026-01-19",{"date":346,"score":129,"percentile":327},"2026-01-20",{"date":348,"score":129,"percentile":349},"2026-01-21",0.50247,{"date":351,"score":129,"percentile":352},"2026-01-22",0.50253,{"date":354,"score":129,"percentile":355},"2026-01-23",0.50303,{"date":357,"score":129,"percentile":358},"2026-01-24",0.50308,{"date":360,"score":129,"percentile":361},"2026-01-25",0.5026,{"date":363,"score":129,"percentile":364},"2026-01-26",0.50234,{"date":366,"score":129,"percentile":367},"2026-01-27",0.50238,{"date":369,"score":129,"percentile":370},"2026-01-28",0.50251,{"date":372,"score":129,"percentile":349},"2026-01-29",{"date":374,"score":129,"percentile":375},"2026-01-30",0.5025,{"date":377,"score":129,"percentile":204},"2026-01-31",{"date":379,"score":207,"percentile":380},"2026-02-01",0.40982,[382,387],{"source":94,"cvss_v2_0":9,"cvss_v3_0":383,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":92,"baseSeverity":384,"vectorString":95,"impactScore":385,"exploitabilityScore":386},"HIGH",9.8,5.6,{"source":100,"cvss_v2_0":9,"cvss_v3_0":388,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":92,"baseSeverity":384,"vectorString":95,"impactScore":385,"exploitabilityScore":386},[390],{"ecosystem":9,"name":391,"vendor":392,"product":391,"cpe_part":393,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":394},"node","nodejs","a",[395,402,406,410,414,418,422,426,430,434,438,442,446,450,454,458,462,466],{"version":396,"is_range":397,"range_type":94,"version_start":398,"version_start_type":399,"version_end":400,"version_end_type":401,"fixed_in":9},">= 4.0, \u003C 4.*",true,"4.0","including","4.*","excluding",{"version":403,"is_range":397,"range_type":94,"version_start":404,"version_start_type":399,"version_end":405,"version_end_type":401,"fixed_in":9},">= 5.0, \u003C 5.*","5.0","5.*",{"version":407,"is_range":397,"range_type":94,"version_start":408,"version_start_type":399,"version_end":409,"version_end_type":401,"fixed_in":9},">= 6.0, \u003C 6.*","6.0","6.*",{"version":411,"is_range":397,"range_type":94,"version_start":412,"version_start_type":399,"version_end":413,"version_end_type":401,"fixed_in":9},">= 7.0, \u003C 7.*","7.0","7.*",{"version":415,"is_range":397,"range_type":94,"version_start":416,"version_start_type":399,"version_end":417,"version_end_type":401,"fixed_in":9},">= 8.0, \u003C 8.*","8.0","8.*",{"version":419,"is_range":397,"range_type":94,"version_start":420,"version_start_type":399,"version_end":421,"version_end_type":401,"fixed_in":9},">= 9.0, \u003C 9.*","9.0","9.*",{"version":423,"is_range":397,"range_type":94,"version_start":424,"version_start_type":399,"version_end":425,"version_end_type":401,"fixed_in":9},">= 10.0, \u003C 10.*","10.0","10.*",{"version":427,"is_range":397,"range_type":94,"version_start":428,"version_start_type":399,"version_end":429,"version_end_type":401,"fixed_in":9},">= 11.0, \u003C 11.*","11.0","11.*",{"version":431,"is_range":397,"range_type":94,"version_start":432,"version_start_type":399,"version_end":433,"version_end_type":401,"fixed_in":9},">= 12.0, \u003C 12.*","12.0","12.*",{"version":435,"is_range":397,"range_type":94,"version_start":436,"version_start_type":399,"version_end":437,"version_end_type":401,"fixed_in":9},">= 13.0, \u003C 13.*","13.0","13.*",{"version":439,"is_range":397,"range_type":94,"version_start":440,"version_start_type":399,"version_end":441,"version_end_type":401,"fixed_in":9},">= 14.0, \u003C 14.*","14.0","14.*",{"version":443,"is_range":397,"range_type":94,"version_start":444,"version_start_type":399,"version_end":445,"version_end_type":401,"fixed_in":9},">= 15.0, \u003C 15.*","15.0","15.*",{"version":447,"is_range":397,"range_type":94,"version_start":448,"version_start_type":399,"version_end":449,"version_end_type":401,"fixed_in":9},">= 16.0, \u003C 16.*","16.0","16.*",{"version":451,"is_range":397,"range_type":94,"version_start":452,"version_start_type":399,"version_end":453,"version_end_type":401,"fixed_in":9},">= 17.0, \u003C 17.*","17.0","17.*",{"version":455,"is_range":397,"range_type":94,"version_start":456,"version_start_type":399,"version_end":457,"version_end_type":401,"fixed_in":9},">= 18.0, \u003C 18.20.2","18.0","18.20.2",{"version":459,"is_range":397,"range_type":94,"version_start":460,"version_start_type":399,"version_end":461,"version_end_type":401,"fixed_in":9},">= 19.0, \u003C 19.*","19.0","19.*",{"version":463,"is_range":397,"range_type":94,"version_start":464,"version_start_type":399,"version_end":465,"version_end_type":401,"fixed_in":9},">= 20.0, \u003C 20.12.2","20.0","20.12.2",{"version":467,"is_range":397,"range_type":94,"version_start":468,"version_start_type":399,"version_end":469,"version_end_type":401,"fixed_in":9},">= 21.0, \u003C 21.7.3","21.0","21.7.3"]