Vulnerabilities > Squareup > GIT Fastclone

DATE CVE VULNERABILITY TITLE RISK
2016-11-03 CVE-2015-8969 Command Injection vulnerability in Squareup Git-Fastclone 1.0.0/1.0.1
git-fastclone before 1.0.5 passes user modifiable strings directly to a shell command.
network
low complexity
squareup CWE-77
critical
 9.8
9.8
2016-11-03 CVE-2015-8968 Command Injection vulnerability in Squareup Git-Fastclone 1.0.0
git-fastclone before 1.0.1 permits arbitrary shell command execution from .gitmodules.
network
low complexity
squareup CWE-77
8.8
8.8