If an attacker can control the port, which in itself is a very sensitive value, they can inject arbitrary OS commands due to the usage of the exec function in a third-party module kill-port < 1.3.2.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-77,CWE-78,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| kill-port_project | kill-port | * |