jtrussell/semver-tags is vulnerable to Command Injection The vulnerability exists due to improper user-input sanitization in the getGitTagsRemote
function, which allows an attacker to execute arbitrary commands.
CPE | Name | Operator | Version |
---|---|---|---|
semver-tags | le | 0.4.10 | |
semver-tags | le | 0.4.10 |