Lucene search
+L

4 matches found

OSV
OSV
added 3 days ago4 views

CVE-2026-49987 Repomix: Command Injection (RCE) via `--remote-branch` Argument Injection

Repomix is a tool that packs repositories into AI-friendly files. Prior to 1.14.1, src/core/git/gitCommand.ts execGitShallowClone passes the --remote-branch value directly to git fetch and git checkout without validation or --end-of-options, allowing --upload-pack or other Git option injection th...

7.5CVSS6.2AI score0.00697EPSS
Exploits0References5
OSV
OSV
added 2026/07/01 7:1 p.m.5 views

GHSA-HWPP-H97W-2H3J repomix: attach_packed_output can bypass file-read secret scanning for supported local files

attachpackedoutput can register arbitrary .json/.txt/.md/.xml files and bypass the MCP file-read safety check Summary Repomix's MCP server exposes a normal filesystemreadfile tool that reads absolute paths only after running the project's secret check. However, the attachpackedoutput plus...

6.9CVSS6.1AI score0.00169EPSS
Exploits0References2
Patchstack
Patchstack
added 2026/07/01 7:1 p.m.5 views

NPM: repomix: attach_packed_output can bypass file-read secret scanning for supported local files

NPM: repomix: attachpackedoutput can bypass file-read secret scanning for supported local files vulnerability discovered by ? in WordPress Npm repomix versions = 1.14.0...

6.8CVSS5.9AI score0.00169EPSS
Exploits0References2Affected Software1
Github Security Blog
Github Security Blog
added 2026/07/01 7:0 p.m.5 views

repomix Vulnerable to Command Injection (RCE) via `--remote-branch` Argument Injection

Vulnerability Metadata | Field | Detail | | --- | --- | | Affected Component | src/core/git/gitCommand.ts execGitShallowClone | | Impact | Arbitrary Command Execution / Security Control Bypass | Summary The --remote-branch CLI option in repomix is vulnerable to argument injection. User-supplied...

7.5CVSS6.2AI score0.00697EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder