The execute function in in the Atlassian gajira-comment GitHub Action before version 2.0.2 allows remote malicious users to execute arbitrary code in the context of a GitHub runner by creating a specially crafted GitHub issue comment.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
atlassian jira comment |