4 matches found
@auto-canary/all-contributors (>=8.4.1-canary.7be52c60.0 <=10.0.0-canary.998.13000.0), @auto-canary/auto (>=8.4.1-canary.7be52c60.0 <=10.0.0-canary.998.13000.0) +101 more potentially affected by CVE-2021-26541 via gitlog (>=0.0.1 <=4.0.3)
gitlog NPM version =0.0.1, =8.4.1-canary.7be52c60.0, =8.4.1-canary.7be52c60.0, =9.26.6-canary.1135.14740.0, =8.4.1-canary.7be52c60.0, =9.26.6-canary.1135.14740.0, =8.4.1-canary.7be52c60.0, =8.0.1-canary.791.10435.0, =8.4.1-canary.7be52c60.0, =9.26.6-canary.1135.14740.0, =8.4.1-canary.7be52c60.0,...
CVE-2021-26541
The gitlog function in src/index.ts in gitlog before 4.0.4 has a command injection vulnerability...
CVE-2021-26541
The gitlog function in src/index.ts in gitlog before 4.0.4 has a command injection vulnerability...
CVE-2021-26541
CVE-2021-26541 : The issue lies in the gitlog library’s gitlog function (src/index.ts) where input leads to a command injection vulnerability in versions before 4.0.4. The vulnerability is corroborated across multiple connected documents (RH, GHSA, OSV, Veracode, NVD, CVE lists). Reported impact ...