1 results (0.002 seconds)
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-21531
https://notcve.org/view.php?id=CVE-2024-21531
01 Oct 2024 — All versions of the package git-shallow-clone are vulnerable to Command injection due to missing sanitization or mitigation flags in the process variable of the gitShallowClone function. • https://github.com/10uei011/git-shallow-clone/blob/master/index.js%23L27 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •