gitlogplus

Releases5

Frequency2 days

Last Release over 7 years ago

Git log parser for Node.JS

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2021-23412 ↗	Jul 23, 2021Friday, 23 July 2021, 16:15	8.1 HIGH	7.5 HIGH
All versions of package gitlogplus are vulnerable to Command Injection via the main functionality, as options attributes are appended to the command to be executed without sanitization.