Lucene search
K

6 matches found

Cvelist
Cvelist
added 2025/06/25 4:39 p.m.8 views

CVE-2025-52483 Registrator.jl Vulnerable to Argument Injection and Command Injection

Registrator is a GitHub app that automates creation of registration pull requests for julia packages to the General registry. Prior to version 1.9.5, if the clone URL returned by GitHub is malicious or can be injected using upstream vulnerabilities a shell script injection can occur within the...

9.3CVSS0.00382EPSS
Exploits0References2
CVE
CVE
added 2025/06/25 4:39 p.m.21 views

CVE-2025-52483

Registrator.jl (Julia Registrator) is vulnerable prior to v1.9.5. The OSV analysis describes a shell-script injection in withpasswd() if the GitHub clone URL is malicious (or upstream vulnerabilities allow injection), which can lead to remote code execution (RCE). An alternative argument injectio...

9.8CVSS6.8AI score0.00382EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2025/06/25 4:37 p.m.9 views

CVE-2025-52480 Registrator.jl Argument Injection Vulnerability

Registrator is a GitHub app that automates creation of registration pull requests for julia packages to the General registry. Prior to version 1.9.5, if the clone URL returned by GitHub is malicious or can be injected using upstream vulnerabilities, an argument injection is possible in the...

9.3CVSS0.0059EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/06/25 4:37 p.m.3 views

CVE-2025-52480 Registrator.jl Argument Injection Vulnerability

Registrator is a GitHub app that automates creation of registration pull requests for julia packages to the General registry. Prior to version 1.9.5, if the clone URL returned by GitHub is malicious or can be injected using upstream vulnerabilities, an argument injection is possible in the...

9.3CVSS8.2AI score0.0059EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/06/25 12:0 a.m.2 views

Julia Registrator.jl 命令注入漏洞

Julia Registrator.jl is a Julia open source registration bot for Julia packages. A command injection vulnerability exists in Julia Registrator.jl versions prior to 1.9.5, which stems from a script injection that could lead to remote code execution...

9.8CVSS8.1AI score0.00382EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/06/25 12:0 a.m.3 views

Julia Registrator.jl 参数注入漏洞

Julia Registrator.jl is a Julia open source registration bot for Julia packages. A parameter injection vulnerability exists in Julia Registrator.jl versions prior to 1.9.5, which stems from the fact that parameter injection can lead to remote code execution...

9.8CVSS8AI score0.0059EPSS
Exploits0References3
Rows per page
Query Builder