Versions of the package window-control before 1.4.5 are vulnerable to Command Injection via the sendKeys function, due to improper input sanitization.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Window-control |
Window-control_project |
* |
1.4.5 (excluding) |
References