get-git-data up to and including 1.3.1 is vulnerable to Command Injection. It is possible to inject arbitrary commands as part of the arguments provided to get-git-data.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
get-git-data project get-git-data |