GHSA-h9v8-rm3m-5h5fCriticalCVSS 9.8

OS Command Injection in git-add-remote

Published
February 10, 2022
Last Modified
July 6, 2026

🔗 CVE IDs covered (1)

📋 Description

git-add-remote through 1.0.0 is vulnerable to Command Injection. It allows execution of arbitrary commands via the name argument.

🎯 Affected products1

  • npm/git-add-remote:<= 1.0.0

🔗 References (4)