EPSS
Percentile
57.8%
pullit is vulnerable to Arbitrary Command Execution. The vulnerability exists in index.js due to an insecure use of the eval function which allows an attacker to inject and execute arbitrary commands.
index.js
eval
github.com/advisories/GHSA-8px5-63x9-5c7p
github.com/jkup/pullit/commit/4fec455774ee08f4dce0ef2ef934ffcc37219bfb
github.com/jkup/pullit/issues/23