Vulnerabilities

CVE-2024-21531

by Fred · 01/10/2024

All versions of the package git-shallow-clone are vulnerable to Command injection due to missing sanitization or mitigation flags in the process variable of the gitShallowClone function.

More information : https://github.com/10uei011/git-shallow-clone/blob/master/index.js%23L27

Similar

Tags: Cybersecurity Alert