2 matches found
CVE-2020-7619
CVE-2020-7619 affects the Node.js package get-git-data up to version 1.3.1. The issue is a Command Injection vulnerability: user-supplied arguments to get-git-data can lead to arbitrary command execution. Multiple connected sources confirm the vulnerability and link it to the lack of input valida...
sizemometer (>=0.3.0 <=0.8.1) potentially affected by CVE-2020-7619 via get-git-data (>=1.3.0 <=1.3.1)
get-git-data NPM version =1.3.0, =0.3.0, =0.8.1 Source cves: CVE-2020-7619 Source advisory: SNYK:JS-GETGITDATA-564222...