6 matches found
CVE-2025-52483 Registrator.jl Vulnerable to Argument Injection and Command Injection
Registrator is a GitHub app that automates creation of registration pull requests for julia packages to the General registry. Prior to version 1.9.5, if the clone URL returned by GitHub is malicious or can be injected using upstream vulnerabilities a shell script injection can occur within the...
CVE-2025-52483
Registrator.jl (Julia Registrator) is vulnerable prior to v1.9.5. The OSV analysis describes a shell-script injection in withpasswd() if the GitHub clone URL is malicious (or upstream vulnerabilities allow injection), which can lead to remote code execution (RCE). An alternative argument injectio...
CVE-2025-52480 Registrator.jl Argument Injection Vulnerability
Registrator is a GitHub app that automates creation of registration pull requests for julia packages to the General registry. Prior to version 1.9.5, if the clone URL returned by GitHub is malicious or can be injected using upstream vulnerabilities, an argument injection is possible in the...
CVE-2025-52480 Registrator.jl Argument Injection Vulnerability
Registrator is a GitHub app that automates creation of registration pull requests for julia packages to the General registry. Prior to version 1.9.5, if the clone URL returned by GitHub is malicious or can be injected using upstream vulnerabilities, an argument injection is possible in the...
Julia Registrator.jl 命令注入漏洞
Julia Registrator.jl is a Julia open source registration bot for Julia packages. A command injection vulnerability exists in Julia Registrator.jl versions prior to 1.9.5, which stems from a script injection that could lead to remote code execution...
Julia Registrator.jl 参数注入漏洞
Julia Registrator.jl is a Julia open source registration bot for Julia packages. A parameter injection vulnerability exists in Julia Registrator.jl versions prior to 1.9.5, which stems from the fact that parameter injection can lead to remote code execution...