CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

RedhatCVE•added 2026/01/09 10:0 a.m.•2 views

CVE-2020-7619

get-git-data through 1.3.1 is vulnerable to Command Injection. It is possible to inject arbitrary commands as part of the arguments provided to get-git-data...

9.8CVSS7.2AI score0.02062EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2021-1220

Malware in sbrugna...

9.8CVSS9.3AI score0.02062EPSS

Exploits0References5

Github Security Blog•added 2021/05/10 3:59 p.m.•36 views

Command injection in get-git-data

get-git-data through 1.3.1 is vulnerable to Command Injection. It is possible to inject arbitrary commands as part of the arguments provided to get-git-data...

9.8CVSS9.2AI score0.02062EPSS

Exploits0References4Affected Software1

vulnersOsv•added 2021/05/10 3:59 p.m.•1 views

sizemometer (>=0.0.3 <=0.8.1) potentially affected by CVE-2020-7619 via get-git-data (>=1.0.3 <=1.3.1)

get-git-data NPM version =1.0.3, =0.0.3, =0.8.1 Source cves: CVE-2020-7619 Source advisory: OSV:GHSA-WJ6H-7CHW-X4H2...

9.8CVSS7.2AI score0.02062EPSS

Exploits0

OSV•added 2021/05/10 3:59 p.m.•0 views

GHSA-WJ6H-7CHW-X4H2 Command injection in get-git-data

get-git-data through 1.3.1 is vulnerable to Command Injection. It is possible to inject arbitrary commands as part of the arguments provided to get-git-data...

9.8CVSS7.3AI score0.02062EPSS

Exploits0References3

Veracode•added 2020/04/03 4:3 a.m.•16 views

OS Command Injection

get-git-data is vulnerable to OS command injection. The vulnerability exists as the values of cmd is not sanitized...

9.8CVSS2.9AI score0.02062EPSS

Exploits0References3Affected Software1

CNVD•added 2020/04/03 12:0 a.m.•2 views

get-git-data injection vulnerability

get-git-data is a package for accessing Git version information. An injection vulnerability exists in get-git-data 1.3.1 and earlier versions, which stems from a lack of proper validation of user input data. A remote attacker can exploit this vulnerability by sending specially crafted parameters ...

9.8CVSS7.8AI score0.02062EPSS

Exploits0References1

OSV•added 2020/04/02 9:15 p.m.•0 views

CVE-2020-7619

get-git-data through 1.3.1 is vulnerable to Command Injection. It is possible to inject arbitrary commands as part of the arguments provided to get-git-data...

9.8CVSS7.4AI score0.02062EPSS

Exploits0References2

NVD•added 2020/04/02 9:15 p.m.•8 views

CVE-2020-7619

get-git-data through 1.3.1 is vulnerable to Command Injection. It is possible to inject arbitrary commands as part of the arguments provided to get-git-data...

9.8CVSS9.7AI score0.02062EPSS

Exploits0References2

CVE•added 2020/04/02 8:43 p.m.•57 views

CVE-2020-7619

CVE-2020-7619 affects the Node.js package get-git-data up to version 1.3.1. The issue is a Command Injection vulnerability: user-supplied arguments to get-git-data can lead to arbitrary command execution. Multiple connected sources confirm the vulnerability and link it to the lack of input valida...

9.8CVSS9.6AI score0.02062EPSS

Exploits0References2Affected Software1

vulnersOsv•added 2020/04/02 12:0 a.m.•0 views

sizemometer (>=0.3.0 <=0.8.1) potentially affected by CVE-2020-7619 via get-git-data (>=1.3.0 <=1.3.1)

get-git-data NPM version =1.3.0, =0.3.0, =0.8.1 Source cves: CVE-2020-7619 Source advisory: SNYK:JS-GETGITDATA-564222...

9.8CVSS7.2AI score0.02062EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by