6.0.6
7 years ago
24 days ago
Known vulnerabilities in the git-diff-apply package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for freeVulnerability | Vulnerable Version |
---|---|
git-diff-apply is a package that can be used to reach an unrelated remote repository to apply a git diff. Affected versions of this package are vulnerable to Command Injection. In "index.js" file, line 240, the PoC by JHU System Security Lab
How to fix Command Injection? Upgrade | <0.22.2 |