Kelly Selden

1 exploit Active since Jan 2020
CVE-2019-10776 WRITEUP CRITICAL WRITEUP
git-diff-apply < 0.22.2 - OS Command Injection via RemoteUrl Parameter
In "index.js" file line 240, the run command executes the git command with a user controlled variable called remoteUrl. This affects git-diff-apply all versions prior to 0.22.2.
CVSS 9.8