CVE-2020-7607: OS Command Injection in gulkp-styledocco

Severity: Critical

CVSS Score: 9.8

gulp-styledocco through 0.0.3 allows execution of arbitrary commands. The argument 'options' of the exports function in 'index.js' can be controlled by users without any sanitization.