CVE-2018-3785

Source
https://nvd.nist.gov/vuln/detail/CVE-2018-3785
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-3785.json
Aliases
Published
2018-08-17T13:29:00Z
Modified
2023-11-29T06:36:06.233372Z
Details

A command injection in git-dummy-commit v1.3.0 allows os level commands to be executed due to an unescaped parameter.

References

Affected packages

Git / github.com/stevemao/git-dummy-commit

Affected ranges

Type
GIT
Repo
https://github.com/stevemao/git-dummy-commit
Events
Introduced
0The exact introduced commit is unknown
Last affected
30455b4437226be956ae8418830c1bcbce8bb423

Affected versions

v1.*

v1.0.0
v1.1.0
v1.1.1
v1.2.0
v1.2.1
v1.3.0