1 results (0.006 seconds)

CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 1

git-add-remote through 1.0.0 is vulnerable to Command Injection. It allows execution of arbitrary commands via the name argument. git-add-remote versiones hasta 1.0.0, es vulnerable a una Inyección de Comandos. Lo que permite una ejecución de comandos arbitrarios por medio del argumento name. • https://github.com/jonschlinkert/git-add-remote/blob/master/index.js#L21%2C https://snyk.io/vuln/SNYK-JS-GITADDREMOTE-564269 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •