[Vulnerability] OS command injection via Memraid PNG export

The Memraid PNG export functionality is vulnerable to OS command injection due to use of `shell` option enabled. This could allow an attacker to injection OS command using `pngFilePath` variable.

File: [mermaid.ts (lines: 23-40)](https://github.com/shd101wyy/mume/blob/2fc2a6fd66292c0c3cdd1fecd480db154669b6fe/src/mermaid.ts)

Vulnerable code snippet:
```js
await utility.execFile(
      "npx",
      [
        "-p",
        "@mermaid-js/mermaid-cli",
        "mmdc",
        "--theme",
        themeName,
        "--input",
        info.path,
        "--output",
        pngFilePath,
      ],
      {
        shell: true,
        cwd: projectDirectoryPath,
      },
    );
```

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Vulnerability] OS command injection via Memraid PNG export #274

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

[Vulnerability] OS command injection via Memraid PNG export #274

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions