The "gitDiff" function in Wayfair git-parse <=1.0.4 has a command injection vulnerability. Clients of the git-parse library are unlikely to be aware of this, so they might unwittingly write code that contains a vulnerability. The issue has been resolved in version 1.0.5.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2021-05-06T12:28:10
Updated: 2024-08-03T20:26:25.511Z
Reserved: 2021-02-01T00:00:00
Link: CVE-2021-26543
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-05-06T13:15:12.417
Modified: 2024-11-21T05:56:26.973
Link: CVE-2021-26543
Redhat
No data.