8 matches found
EUVD-2020-24203
Malware in sbrugna...
CVE-2020-36762
A vulnerability was found in ONS Digital RAS Collection Instrument up to 2.0.27 and classified as critical. Affected by this issue is the function jobs of the file .github/workflows/comment.yml. The manipulation of the argument $COMMENTBODY leads to os command injection. Upgrading to version 2.0....
CVE-2020-36762
A vulnerability was found in ONS Digital RAS Collection Instrument up to 2.0.27 and classified as critical. Affected by this issue is the function jobs of the file .github/workflows/comment.yml. The manipulation of the argument $COMMENTBODY leads to os command injection. Upgrading to version 2.0....
CVE-2020-36762
A vulnerability was found in ONS Digital RAS Collection Instrument up to 2.0.27 and classified as critical. Affected by this issue is the function jobs of the file .github/workflows/comment.yml. The manipulation of the argument $COMMENTBODY leads to os command injection. Upgrading to version 2.0....
Command injection
A vulnerability was found in ONS Digital RAS Collection Instrument up to 2.0.27 and classified as critical. Affected by this issue is the function jobs of the file .github/workflows/comment.yml. The manipulation of the argument $COMMENTBODY leads to os command injection. Upgrading to version 2.0....
CVE-2020-36762
CVE-2020-36762 affects the ONS Digital RAS Collection Instrument up to version 2.0.27. The root cause is a command-injection vulnerability in the function jobs of the file .github/workflows/comment.yml , caused by manipulation of the argument $COMMENT_BODY . This leads to OS command execution. Th...
CVE-2020-36762 ONS Digital RAS Collection Instrument comment.yml jobs os command injection
A vulnerability was found in ONS Digital RAS Collection Instrument up to 2.0.27 and classified as critical. Affected by this issue is the function jobs of the file .github/workflows/comment.yml. The manipulation of the argument $COMMENTBODY leads to os command injection. Upgrading to version 2.0....
ONS Digital RAS Collection Instrument 操作系统命令注入漏洞
ONS Digital RAS Collection Instrument is an application from ONS Digital that is responsible for collection exercises and instrument uploads. An operating system command injection vulnerability exists in ONS Digital RAS Collection Instrument versions prior to 2.0.28, which stems from a security...