GMS-2021-183: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Improper Neutralization of Special Elements used in an OS Command (‘OS Command Injection’) in json-ptr.
References
- github.com/418sec/json-ptr/pull/3
- github.com/advisories/GHSA-rrqv-vjrw-hrcr
- github.com/flitbit/json-ptr/blob/456a1728b45c8663bb1ac20a249c5fb17495ec6b/README.md
- github.com/flitbit/json-ptr/blob/master/src/util.ts%23L174
- snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1038396
- snyk.io/vuln/SNYK-JS-JSONPTR-1016939
- www.huntr.dev/bounties/2-npm-json-ptr/
- www.npmjs.com/advisories/1706
- www.npmjs.com/package/json-ptr
Detect and mitigate GMS-2021-183 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →