Skip to main content

Gitlabhook

1 CVEs product

Monthly

CVE-2019-5485 npm CRITICAL POC THREAT MAL Act Now

NPM package gitlabhook version 0.0.17 is vulnerable to a Command Injection vulnerability. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Node.js Command Injection Gitlabhook
NVD Exploit-DB
CVSS 3.1
10.0
EPSS
59.8%
EPSS 60% CVSS 10.0
CRITICAL POC THREAT Act Now

NPM package gitlabhook version 0.0.17 is vulnerable to a Command Injection vulnerability. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Node.js Command Injection Gitlabhook
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy