2 matches found
CVE-2025-66219
willitmerge is a command line tool to check if pull requests are mergeable. In versions 0.2.1 and prior, there is a command Injection vulnerability in willitmerge. The vulnerability manifests in this package due to the use of insecure child process execution API exec to which it concatenates user...
CVE-2025-66219
creationtimestamp| type| source ---|---|--- 2025-11-25 21:10:12+00:00| published-proof-of-concept| https://github.com/shama/willitmerge/security/advisories/GHSA-j9wj-m24m-7jj6...