Description
Code injection vulnerability in blamer 1.0.0 and earlier may result in remote code execution when the input can be controlled by an attacker.
Remediation
References
https://hackerone.com/reports/772448
Related Vulnerabilities
CVE-2019-5448 Vulnerability in npm package yarn
CVE-2021-25646 Vulnerability in maven package org.apache.druid:druid-core
CVE-2022-25766 Vulnerability in npm package ungit
CVE-2022-36883 Vulnerability in maven package org.jenkins-ci.plugins:git
CVE-2023-41835 Vulnerability in maven package org.apache.struts:struts2-core