3 matches found
CVE-2026-31975
Cloud CLI (Claude Code UI) vulnerable to OS command injection via WebSocket, affecting claude-code-ui up to version 1.24.0. The root cause is direct interpolation of WebSocket payload values (projectPath and initialCommand) into a bash command string in server/index.js, with a secondary vector th...
CVE-2026-31861
CVE-2026-31861 affects Cloud CLI (Claude Code UI). The /api/user/git-config endpoint interpolates user-supplied gitName/gitEmail into shell commands executed via child_process.exec(), placing input inside double quotes with only " escaped. Bash will still interpret backticks, $() substitutions, a...
CVE-2026-31862
CVE-2026-31862 affects Cloud CLI (Claude Code UI) and related tooling (siteboon/claude-code-ui). Before version 1.24.0, multiple Git-related API endpoints interpolated user-controlled inputs (file, branch, message, commit) into shell commands executed via execAsync(), enabling an authenticated us...