CVE-2026-25244 | WebdriverIO up to 9.23.x getGitMetadataForAISelection os command injection (GHSA-5c46-x3qw-q7j7)

Inserito da Angelo Barbosa | Mag 18, 2026 | CVE

A vulnerability labeled as critical has been found in WebdriverIO up to 9.23.x. This issue affects the function getGitMetadataForAISelection. The manipulation results in os command injection.

This vulnerability is known as CVE-2026-25244. It is possible to launch the attack remotely. No exploit is available.

The affected component should be upgraded.

CVE-2026-25244 | WebdriverIO up to 9.23.x getGitMetadataForAISelection os command injection (GHSA-5c46-x3qw-q7j7)

Post correlati

CVE-2025-12729 | Google Chrome up to 142.0.7444.59 Omnibox Remote Code Execution

CVE-2026-28087 | ThemeREX Filmax Plugin up to 1.1.11 on WordPress filename control

CVE-2024-13378 | GravityForms Plugin 2.9.0.1/2.9.1.3 on WordPress style_settings cross site scripting

CVE-2024-1553 | Mozilla Thunderbird memory corruption