CVE-2026-11572 | degit up to 2.8.5/3.3.0 exec os command injection (SNYK-JS-DEGIT-17116207)

Inserito da Angelo Barbosa | Giu 9, 2026 | CVE

A vulnerability was found in degit up to 2.8.5/3.3.0. It has been rated as critical. The impacted element is the function exec. Performing a manipulation results in os command injection.

This vulnerability was named CVE-2026-11572. The attack may be initiated remotely. There is no available exploit.

Upgrading the affected component is advised.

CVE-2026-11572 | degit up to 2.8.5/3.3.0 exec os command injection (SNYK-JS-DEGIT-17116207)

Post correlati

CVE-2024-1501 | Database Reset Plugin up to 3.22 on WordPress WP Reset Plugin Installation cross-site request forgery

CVE-2025-55372 | Beakon Application up to 5.4.2 unrestricted upload

CVE-2024-46853 | Linux Kernel up to 6.1.110/6.6.51/6.10.10 nxp-fspi out-of-bounds

CVE-2026-9567 | GPAC up to 2.4.0 MP4Box isom_intern.c MergeFragment null pointer dereference (Issue 3549)