kellyselden/git-diff-apply

Releases137

Frequency3 weeks 19 hours

Last Release 9 months ago

Stars9

Use an unrelated remote repository to apply a git diff

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2019-10776 ↗	Jan 7, 2020Tuesday, 7 January 2020, 19:15	9.8 CRITICAL	7.5 HIGH
In "index.js" file line 240, the run command executes the git command with a user controlled variable called remoteUrl. This affects git-diff-apply all versions prior to 0.22.2.