CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

The-Guild: >> Graphql-Tools >> 0.3.13 Security Vulnerabilities

CVE-2021-23326

This affects the package @graphql-tools/git-loader before 6.2.6. The use of exec and execSync in packages/loaders/git/src/load-git.ts allows arbitrary command injection.

CVSS Score

6.3

EPSS Score

0.006

Published

2021-01-20

Page 1

Vulnerabilities

Vulnerable Software

The-Guild: >> Graphql-Tools >> 0.3.13 Security Vulnerabilities

Products

Pricing

Contact Us