Количество 2
Количество 2
CVE-2022-24376
All versions of package git-promise are vulnerable to Command Injection due to an inappropriate fix of a prior [vulnerability](https://security.snyk.io/vuln/SNYK-JS-GITPROMISE-567476) in this package. **Note:** Please note that the vulnerability will not be fixed. The README file was updated with a warning regarding this issue.
GHSA-chj3-f7xw-367m
OS Command Injection in git-promise
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2022-24376 All versions of package git-promise are vulnerable to Command Injection due to an inappropriate fix of a prior [vulnerability](https://security.snyk.io/vuln/SNYK-JS-GITPROMISE-567476) in this package. **Note:** Please note that the vulnerability will not be fixed. The README file was updated with a warning regarding this issue. | CVSS3: 7.2 | 3% Низкий | больше 3 лет назад |
| GHSA-chj3-f7xw-367m OS Command Injection in git-promise | CVSS3: 7.2 | 3% Низкий | больше 3 лет назад |
Уязвимостей на страницу