CNNVD-202509-4534 Information

CNNVD ID

CNNVD-202509-4534

Related CVE

CVE-2025-11148

• CNNVD Published: 2025-09-30

Description (Chinese)

check-branches是Pablo Schaffner个人开发者的一个分支冲突检查工具。 check-branches存在安全漏洞，该漏洞源于信任分支名称并拼接用户输入执行git命令，可能导致命令注入攻击。

Description (English)

Check-branches is a branch conflict check tool for Pablo Schaffner’s personal developer. Check-branches has a security loophole, which stems from the name of the trust branch and collages the user into order to execute the Git, which may lead to the order being injected into the attack.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-09-30

Last Modified

2026-02-24

References

https://gist.github.com/lirantal/054b4ad039a86c418f2c84e3e884d6ec https://security.snyk.io/vuln/SNYK-JS-CHECKBRANCHES-2766494