workspace-tools is vulnerable to command Injection. The vulnerability exists in fetchRemoteBranch
function in git.ts
due to lack of sanitization in flagging inputs which allows a malicious attacker to inject and execute arbitrary code.
CPE | Name | Operator | Version |
---|---|---|---|
workspace-tools | le | 0.18.3 | |
workspace-tools | le | 0.18.3 |