Количество 4
Количество 4
CVE-2022-24065
The package cookiecutter before 2.1.1 are vulnerable to Command Injection via hg argument injection. When calling the cookiecutter function from Python code with the checkout parameter, it is passed to the hg checkout command in a way that additional flags can be set. The additional flags can be used to perform a command injection.
CVE-2022-24065
The package cookiecutter before 2.1.1 are vulnerable to Command Injection via hg argument injection. When calling the cookiecutter function from Python code with the checkout parameter, it is passed to the hg checkout command in a way that additional flags can be set. The additional flags can be used to perform a command injection.
CVE-2022-24065
The package cookiecutter before 2.1.1 are vulnerable to Command Inject ...
GHSA-f4q6-9qm4-h8j4
OS Command Injection in cookiecutter
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2022-24065 The package cookiecutter before 2.1.1 are vulnerable to Command Injection via hg argument injection. When calling the cookiecutter function from Python code with the checkout parameter, it is passed to the hg checkout command in a way that additional flags can be set. The additional flags can be used to perform a command injection. | CVSS3: 8.1 | 2% Низкий | больше 3 лет назад |
 | CVE-2022-24065 The package cookiecutter before 2.1.1 are vulnerable to Command Injection via hg argument injection. When calling the cookiecutter function from Python code with the checkout parameter, it is passed to the hg checkout command in a way that additional flags can be set. The additional flags can be used to perform a command injection. | CVSS3: 8.1 | 2% Низкий | больше 3 лет назад |
| CVE-2022-24065 The package cookiecutter before 2.1.1 are vulnerable to Command Inject ... | CVSS3: 8.1 | 2% Низкий | больше 3 лет назад |
| GHSA-f4q6-9qm4-h8j4 OS Command Injection in cookiecutter | CVSS3: 8.1 | 2% Низкий | больше 3 лет назад |
Уязвимостей на страницу