Severity: Critical
CVSS Score: 9.8
The package ntesseract before 0.2.9 are vulnerable to Command Injection via lib/tesseract.js.