Suspected Vulnerability & Bug Bounty - External Code Execution - huntr.dev

[huntr-helper]

This issue has been generated on-behalf of Mik317 (https://huntr.dev/app/users/Mik317)

Overview

cordova-serve provides a JavaScript API to serve up a Cordova application in the browser.

The issue occurs because a user input is formatted inside a command that will be executed without any check.

Bug Bounty

We have opened up a bounty for this issue on our bug bounty platform. Want to solve this vulnerability and get rewarded 💰? Go to https://huntr.dev/

We will submit a pull request directly to your repository with the fix as soon as possible. Want to learn more? Go to https://github.com/418sec/huntr 📚

Automatically generated by @huntr-helper...

[huntr-helper]

‎‍🛠️ A fix has been provided for this issue. Please reference: 418sec#2

🔥 This fix has been provided through the https://huntr.dev/ bug bounty platform.

[purplecabbage]

So you are saying that a user could hack their own machine? What would be the point of reaching through cordova-serve to execute code when you could just execute the code?

Vulnerabilities should be submitted through the normal channels.
Please see http://www.apache.org/security/

[JamieSlome]

Hey @purplecabbage - whilst the attack vector might be unclear, it is clearly an unintended behaviour as mentioned in #37 (review).

Please let me know if you have any more questions! 🍰