Command Injection

git-commiters is vulnerable to command injection. The vulnerability is due to improper input sanitization in the gitCommitersoptions, callback function, which allows an attacker to inject arbitrary commands through unsanitized parameters such as cwd or revisionRange...

Command Injection

Overview git-commiters is a Statistical summary of various infomation about git commiter. Affected versions of this package are vulnerable to Command Injection via the gitCommiters API which allows specifying options such as cwd for current working directory and revisionRange as a revision pointe...

GHSA-G38C-WXJF-XRH6 `git-comiters` Command Injection vulnerability

Background on the vulnerability This vulnerability manifests with the library's primary exported API: gitCommitersoptions, callback which allows specifying options such as cwd for current working directory and revisionRange as a revision pointer, such as HEAD. However, the library does not saniti...

DD-WRT 缓冲区错误漏洞

DD-WRT is a Linux-based alternative open source firmware to DD-WRT Open Source. It is suitable for use in a variety of WLAN routers and embedded systems. A buffer error vulnerability exists in DD-WRT revisions 32270 through 48599 that stems from a specially crafted HTTP request that could result ...