CVE-2020-28490 – The package async-git before 1.13.2 are vulnerable to Command Injection via shell meta-cha …

18 February 2021

Vuln ID: CVE-2020-28490

Published: 2021-02-18 15:15:13Z

Description: The package async-git before 1.13.2 are vulnerable to Command Injection via shell meta-characters (back-ticks). For example: git.reset(‘atouch HACKEDb’)

Source: NVD.NIST.GOV

Date:

18 February 2021

Categorie(s):

NVD

Tag(s):

NVD

Secure Coding Practices to Stop Cyber Attacks26 April 2024
Azure Virtual Network Encryption26 April 2024
Four trends to top the CISO’s packed agenda26 April 2024
Microsoft Publicly Releases MS-DOS 4.0 Source Code26 April 2024
New SSLoad Malware Combined With Tools Hijacking Entire Network Domain26 April 2024