CVE-2020-28422
Improper Neutralization of Special Elements used in a Command ('Command Injection') in npm/git-archive
Identifiers
GHSA-vqgr-mfxm-47f3, CVE-2020-28422
Package Slug
npm/git-archive
Vulnerability
Improper Neutralization of Special Elements used in a Command ('Command Injection')
Description
All versions of package git-archive is vulnerable to Command Injection via the exports function.
Affected Versions
All versions up to 0.1.4
Solution
Unfortunately, there is no solution available yet.
Last Modified
2022-08-09
| source |