12 matches found
CVE-2025-4574 vulnerabilities
Vulnerabilities for packages: zed, cargo-c, deno, wasmcloud, yara-x, samply, pixi, wadm, oranda, fd, cargo-audit, starship, lychee, rust-analyzer, yazi, nushell, ruff, oxipng...
CVE-2025-4574 vulnerabilities
Vulnerabilities for packages: ztunnel, lychee, ztunnel-fips, pixi, yazi, starship, samply, nushell, wadm, deno, ruff, zed, cargo-audit, cargo-c, yara-x, rust-analyzer, fd, oranda, wasmcloud, oxipng...
GHSA-VX24-X4MV-VWR5 Starship vulnerable to shell injection via undocumented, unpredictable shell expansion in custom commands
Description Starship is a cross-shell prompt. Starting in version 1.0.0 and prior to version 1.20.0, undocumented and unpredictable shell expansion and/or quoting rules make it easily to accidentally cause shell injection when using custom commands with starship in bash. Version 1.20.0 fixes the...
Starship vulnerable to shell injection via undocumented, unpredictable shell expansion in custom commands
Description Starship is a cross-shell prompt. Starting in version 1.0.0 and prior to version 1.20.0, undocumented and unpredictable shell expansion and/or quoting rules make it easily to accidentally cause shell injection when using custom commands with starship in bash. Version 1.20.0 fixes the...
CVE-2024-41815
Starship is a cross-shell prompt. Starting in version 1.0.0 and prior to version 1.20.0, undocumented and unpredictable shell expansion and/or quoting rules make it easily to accidentally cause shell injection when using custom commands with starship in bash. This issue only affects users with...
CVE-2024-41815
Starship is a cross-shell prompt. Starting in version 1.0.0 and prior to version 1.20.0, undocumented and unpredictable shell expansion and/or quoting rules make it easily to accidentally cause shell injection when using custom commands with starship in bash. This issue only affects users with...
CVE-2024-41815 Starship vulnerable to shell injection via undocumented, unpredictable shell expansion in custom commands
Starship is a cross-shell prompt. Starting in version 1.0.0 and prior to version 1.20.0, undocumented and unpredictable shell expansion and/or quoting rules make it easily to accidentally cause shell injection when using custom commands with starship in bash. This issue only affects users with...
CVE-2024-41815
Starship (shell prompt) is affected by CVE-2024-41815: before 1.20.0, undocumented shell expansion/quoting in custom commands can lead to shell injection in Bash. Impact is limited to users with custom commands, but local exploitation is possible. Version 1.20.0 contains the fix; upgrade to mitig...
CVE-2024-41815 Starship vulnerable to shell injection via undocumented, unpredictable shell expansion in custom commands
Starship is a cross-shell prompt. Starting in version 1.0.0 and prior to version 1.20.0, undocumented and unpredictable shell expansion and/or quoting rules make it easily to accidentally cause shell injection when using custom commands with starship in bash. This issue only affects users with...
RUSTSEC-2024-0446 Shell expansion in custom commands
Summary Undocumented and unpredictable shell expansion and/or quoting rules make it easily to accidentally cause shell injection when using custom commands with starship in bash. Details I wanted to show the git commit name in my prompt I use bash, so I added a command: custom.gitcommitname comma...
PT-2024-29581 ยท Starship ยท Starship
Name of the Vulnerable Software and Affected Versions: Starship versions 1.0.0 through 1.19.x Description: Starship is a cross-shell prompt that has undocumented and unpredictable shell expansion and/or quoting rules, making it easy to accidentally cause shell injection when using custom commands...
Battleship - Starship free - Native code usage, SD-card access, Suspicious files vulnerabilities
HackApp vulnerability scanner discovered that application Battleship - Starship free published at the 'play' market has multiple vulnerabilities...