GHSA-h3c2-x77c-7pvr

Source

https://github.com/advisories/GHSA-h3c2-x77c-7pvr

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2018/08/GHSA-h3c2-x77c-7pvr/GHSA-h3c2-x77c-7pvr.json

Aliases

CVE-2018-3785

Published

2018-08-21T17:03:33Z

Modified

2023-11-08T04:00:20.168090Z

Details

A command injection in git-dummy-commit v1.3.0 allows os level commands to be executed due to an unescaped parameter.

References

Affected packages

npm / git-dummy-commit

Package

Name: git-dummy-commit

Affected ranges

Type: SEMVER
Events: Introduced

0The exact introduced commit is unknown

Last affected

1.3.0