VulnerableCode Package Details - pkg:npm/pidusage@1.1.5

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-5mrz-3b9x-bue3	Command Injection The pidusage module passes unsanitized input to child_process.exec, resulting in command injection in the ps method, as the pid is never cast to an integer as the comment expects. This module is vulnerable to this PoC on Darwin, SunOS, FreeBSD, and AIX. Windows and Linux are not vulnerable.	GMS-2017-137
VCID-hv35-hwj2-x3h9	Command Injection in pidusage	CVE-2017-16034 GHSA-hfq9-rfpv-j8r8 GMS-2020-757
VCID-pn7m-uesu-mqcf	PIDUsage Enables OS Command Injection	CVE-2017-1000220 GHSA-h2p3-h48h-9jj7

Vulnerability

Summary

Aliases

VCID-5mrz-3b9x-bue3

Command Injection The pidusage module passes unsanitized input to child_process.exec, resulting in command injection in the ps method, as the pid is never cast to an integer as the comment expects. This module is vulnerable to this PoC on Darwin, SunOS, FreeBSD, and AIX. Windows and Linux are not vulnerable.

GMS-2017-137

VCID-hv35-hwj2-x3h9

Command Injection in pidusage

CVE-2017-16034
GHSA-hfq9-rfpv-j8r8
GMS-2020-757

VCID-pn7m-uesu-mqcf

PIDUsage Enables OS Command Injection

CVE-2017-1000220
GHSA-h2p3-h48h-9jj7

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-13T15:07:53.946147+00:00	GitLab Importer	Fixing	VCID-hv35-hwj2-x3h9	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/pidusage/GMS-2020-757.yml	38.6.0
2026-06-12T15:44:19.252199+00:00	GitLab Importer	Fixing	VCID-pn7m-uesu-mqcf	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/pidusage/CVE-2017-1000220.yml	38.6.0
2026-06-12T15:39:46.787995+00:00	GitLab Importer	Fixing	VCID-5mrz-3b9x-bue3	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/pidusage/GMS-2017-137.yml	38.6.0
2026-06-12T08:26:16.068502+00:00	GithubOSV Importer	Fixing	VCID-pn7m-uesu-mqcf	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-h2p3-h48h-9jj7/GHSA-h2p3-h48h-9jj7.json	38.6.0
2026-06-12T08:01:06.129792+00:00	GithubOSV Importer	Fixing	VCID-hv35-hwj2-x3h9	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2020/09/GHSA-hfq9-rfpv-j8r8/GHSA-hfq9-rfpv-j8r8.json	38.6.0
2026-06-11T20:30:27.358363+00:00	GHSA Importer	Fixing	VCID-pn7m-uesu-mqcf	https://github.com/advisories/GHSA-h2p3-h48h-9jj7	38.6.0
2026-06-11T20:26:29.634417+00:00	GHSA Importer	Fixing	VCID-hv35-hwj2-x3h9	https://github.com/advisories/GHSA-hfq9-rfpv-j8r8	38.6.0