Lucene search
GoogleOSV:CVE-2022-25860HistoryJan 26, 2023 - 9:15 p.m.
CVE-2022-25860
2023-01-2621:15:31
Google
osv.dev
3
Versions of the package simple-git before 3.16.0 are vulnerable to Remote Code Execution (RCE) via the clone(), pull(), push() and listRemote() methods, due to improper input sanitization.
This vulnerability exists due to an incomplete fix of CVE-2022-25912.
Related
cvelist
cvelist
CVE-2022-25860
2023-01-24 05:00:02
CVE-2022-25912 Remote Code Execution (RCE)
2022-12-06 00:00:00
github
github
Remote code execution in simple-git
2023-01-26 21:30:25
cve
cve
CVE-2022-25860
2023-01-26 21:15:00
CVE-2022-25912
2022-12-06 05:15:00
prion
prion
Input validation
2023-01-26 21:15:00
Design/Logic Flaw
2022-12-06 05:15:00
osv
osv
Remote code execution in simple-git
2023-01-26 21:30:25
simple-git vulnerable to Remote Code Execution when enabling the ext transport protocol
2022-12-06 06:30:17
CVE-2022-25912
2022-12-06 05:15:11
veracode
veracode
Remote Code Execution (RCE)
2023-02-08 09:25:23
Remote Code Execution (RCE)
2022-12-08 03:15:42
ibm
ibm
wordfence
wordfence