EPSS
Percentile
49.6%
github.com/github/gh-ost is vulnerable to arbitrary file read. Lack of proper sanitization of -database parameter allows an attacker with access to host to execute malicious command via malicious input.
-database
github.com/github/gh-ost/commit/a91ab042de013cfd8fbb633763438932d9080d8f
github.com/github/gh-ost/security/advisories/GHSA-rrp4-2xx3-mv29