Code Execution
composer/composer is vulnerable to Code Execution. The vulnerability is due to improper branch name sanitization within the status, reinstall, and remove commands when handling packages installed from source via git, which allows an attacker to execute arbitrary code...