Vulnerabilities > GIT Commit Info Project

DATE	CVE	VULNERABILITY TITLE	RISK
2023-06-28	CVE-2023-26134	Command Injection vulnerability in Git-Commit-Info Project Git-Commit-Info Versions of the package git-commit-info before 2.0.2 are vulnerable to Command Injection such that the package-exported method gitCommitInfo () fails to sanitize its parameter commit, which later flows into a sensitive command execution API. network low complexity git-commit-info-project CWE-77 critical	9.8

Vulnerabilities > GIT Commit Info Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"GIT Commit Info Project"}]}