24 matches found
CVE-2022-24753 Code injection in Stripe CLI on windows
Stripe CLI is a command-line tool for the Stripe eCommerce platform. A vulnerability in Stripe CLI exists on Windows when certain commands are run in a directory where an attacker has planted files. The commands are stripe login, stripe config -e, stripe community, and stripe open. MacOS and Linu...
CVE-2022-24753 Code injection in Stripe CLI on windows
Stripe CLI is a command-line tool for the Stripe eCommerce platform. A vulnerability in Stripe CLI exists on Windows when certain commands are run in a directory where an attacker has planted files. The commands are stripe login, stripe config -e, stripe community, and stripe open. MacOS and Linu...
PT-2022-16856 · Stripe · Stripe Cli
Name of the Vulnerable Software and Affected Versions: Stripe CLI versions prior to 1.7.13 Description: A vulnerability exists in Stripe CLI on Windows when certain commands are run in a directory where an attacker has planted files. The affected commands are stripe login, stripe config -e, strip...
Stripe CLI 操作系统命令注入漏洞
Stripe CLI is a command line tool for the Stripe e-commerce platform from Stripe Ireland. Stripe CLI suffers from an operating system command injection vulnerability that can be exploited by an attacker to run arbitrary code in the current user's environment...