2 matches found
CVE-2015-8969
git-fastclone before 1.0.5 passes user modifiable strings directly to a shell command. An attacker can execute malicious commands by modifying the strings that are passed as arguments to "cd " and "git clone " commands in the library...
CVE-2015-8969
Summary: Git-fastclone versions before 1.0.5 pass user-controlled strings directly to a shell command, enabling command injection by altering arguments to “cd” and “git clone”. This is described across CVE-2015-8969 references (NVD, CVE entries, and advisories) and is confirmed by related securit...