Critical severity9.8NVD Advisory· Published Apr 2, 2020· Updated Jun 17, 2026
CVE-2020-7619
CVE-2020-7619
Description
get-git-data through 1.3.1 is vulnerable to Command Injection. It is possible to inject arbitrary commands as part of the arguments provided to get-git-data.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
get-git-datanpm | <= 1.3.1 | — |
Affected products
2- get-git-data/get-git-datadescription
Patches
Vulnerability mechanics
References
5- github.com/advisories/GHSA-wj6h-7chw-x4h2ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2020-7619ghsaADVISORY
- snyk.io/vuln/SNYK-JS-GETGITDATA-564222nvdThird Party AdvisoryWEB
- github.com/chardos/get-git-data/blob/master/index.jsghsaWEB
- github.com/chardos/get-git-data/blob/master/index.jsnvd
News mentions
0No linked articles in our index yet.