CVE-2026-28291 | steveukx git-js up to 3.31.x os command injection (GHSA-jcxm-m3jx-f287)

Inserito da Angelo Barbosa | Apr 13, 2026 | CVE

A vulnerability marked as critical has been reported in steveukx git-js up to 3.31.x. This issue affects some unknown processing. Performing a manipulation results in os command injection.

This vulnerability is reported as CVE-2026-28291. The attack is possible to be carried out remotely. No exploit exists.

It is suggested to upgrade the affected component.

CVE-2026-28291 | steveukx git-js up to 3.31.x os command injection (GHSA-jcxm-m3jx-f287)

Post correlati

CVE-2024-36221 | Adobe Experience Manager up to 6.5.20 cross site scripting (apsb24-28)

CVE-2024-36015 | Linux Kernel up to 6.9 ppdev register_device return value (fbf740aeb86a)

CVE-2026-4164 | Wavlink WL-WN578W2 221110 POST Request /cgi-bin/wireless.cgi Delete_Mac_list/SetName/GuestWifi command injection

CVE-2022-0402 | Super Forms Plugin up to 6.0.3 on WordPress AJAX Action bob_czy_panstwa_sprawa_zostala_rozwiazana cross site scripting