CVEs-PoC/2022/CVE-2022-25766.md at 8e2ebbf9bd04edab52d0cbcbc6c2f6e2cfdaa67d

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-28 23:51:26 +02:00

Files

T

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

The package ungit before 1.5.20 are vulnerable to Remote Code Execution (RCE) via argument injection. The issue occurs when calling the /api/fetch endpoint. User controlled values (remote and ref) are passed to the git fetch command. By injecting some git options it was possible to get arbitrary command execution.

POC

Reference

https://github.com/FredrikNoren/ungit/pull/1510
https://snyk.io/vuln/SNYK-JS-UNGIT-2414099

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/dellalibera/dellalibera
https://github.com/vovikhangcdv/codeql-extended-libraries

985 B Raw Blame History

CVE-2022-25766

Description

POC

Reference

Github

985 B

Raw Blame History