Lucene search
K

24 matches found

NVD
NVD
added 2022/04/01 6:15 p.m.11 views

CVE-2022-24440

The package cocoapods-downloader before 1.6.0, from 1.6.2 and before 1.6.3 are vulnerable to Command Injection via git argument injection. When calling the Pod::Downloader.preprocessoptions function and using git, both the git and branch parameters are passed to the git ls-remote subcommand in a...

9.8CVSS0.02713EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/04/01 12:0 a.m.7 views

PT-2022-16698

Name of the Vulnerable Software and Affected Versions cocoapods-downloader versions prior to 1.6.0 cocoapods-downloader versions 1.6.2 through 1.6.3 Description The issue concerns Command Injection via git argument injection. When the Pod::Downloader.preprocess options function is called and git ...

9.8CVSS7.2AI score0.02713EPSS
Exploits0References12
Snyk
Snyk
added 2022/03/02 3:33 p.m.1 views

Command Injection

Overview cocoapods-downloader is an A small library for downloading files from remotes in a folder. Affected versions of this package are vulnerable to Command Injection via git argument injection. When calling the Pod::Downloader.preprocessoptions function and using git, both the git and branch...

9.8CVSS7.5AI score0.02713EPSS
Exploits0References3
OSV
OSV
added 2019/09/19 3:15 p.m.7 views

CVE-2019-15000

The commit diff rest endpoint in Bitbucket Server and Data Center before 5.16.10 the fixed version for 5.16.x , from 6.0.0 before 6.0.10 the fixed version for 6.0.x, from 6.1.0 before 6.1.8 the fixed version for 6.1.x, from 6.2.0 before 6.2.6 the fixed version for 6.2.x, from 6.3.0 before 6.3.5 t...

9.8CVSS7.5AI score0.07786EPSS
Exploits0References3
Rows per page
Query Builder