5 matches found
CVE-2020-28422
creationtimestamp| type| source ---|---|--- 2022-07-25 18:43:32+00:00| seen| https://t.me/cibsecurity/46932...
CVE-2020-28422
All versions of package git-archive are vulnerable to Command Injection via the exports function...
CVE-2020-28422 Command Injection
All versions of package git-archive are vulnerable to Command Injection via the exports function...
CVE-2020-28422
CVE-2020-28422 affects the git-archive module, where the vulnerability is a command injection via the exports function . All versions are reported vulnerable, enabling a local attacker to execute arbitrary commands through the exports function. The issue has been consistently described across mul...
lambda_pattern (>=0.0.15 <=0.0.31), push2cloud-cli (>=1.0.0 <=2.0.3) +3 more potentially affected by CVE-2020-28422 via git-archive (=0.1.4)
git-archive NPM version =0.1.4 is affected by a known vulnerability. The following packages have a transitive dependency on git-archive and may be impacted: - lambdapattern =0.0.15, =1.0.0, =1.0.0, =2.0.4 - push2cloud-compiler-rf =2.0.2 Source cves: CVE-2020-28422 Source advisory:...