2020-04-07 13:14:04
snyk
PUBLISHED
fsa through 0.5.1 is vulnerable to Command Injection. The first argument of execGitCommand(), located within lib/rep.js#63 can be controlled by users without any sanitization to inject arbitrary commands.