CVE-2018-3785

A command injection in git-dummy-commit v1.3.0 allows os level commands to be executed due to an unescaped parameter.
References
Link Resource
https://hackerone.com/reports/341710 Exploit Patch
Configurations

Configuration 1

cpe:2.3:a:git-dummy-commit_project:git-dummy-commit:1.3.0:*:*:*:*:node.js:*:*

Information

Published : 2018-08-17 01:29

Updated : 2023-02-02 07:38


NVD link : CVE-2018-3785

Mitre link : CVE-2018-3785

Products Affected
No products.
CWE