Description
All versions of package git-archive are vulnerable to Command Injection via the exports function.
Remediation
References
https://security.snyk.io/vuln/SNYK-JS-GITARCHIVE-1050391
Related Vulnerabilities
CVE-2013-2135 Vulnerability in maven package com.opensymphony:xwork-core
CVE-2020-28269 Vulnerability in npm package field
CVE-2018-17247 Vulnerability in maven package org.elasticsearch:elasticsearch
CVE-2023-31718 Vulnerability in npm package @frangoteam/fuxa
CVE-2015-0254 Vulnerability in maven package taglibs:standard