OS Command Injection in GitHub repository jgraph/drawio prior to 21.4.0.
References
Link | Resource |
---|---|
https://github.com/jgraph/drawio/commit/9d6532de36496e77d872d91b1947bb696607d623 | Patch |
https://huntr.dev/bounties/ce75aa04-e4d6-4e0a-9db0-ae84c46ae9e2 | Permissions Required |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: @huntrdev
Published: 2023-07-27T14:33:31.671Z
Updated: 2023-07-27T14:33:31.671Z
Reserved: 2023-07-27T14:33:26.406Z
Link: CVE-2023-3974
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-07-27T15:15:12.633
Modified: 2023-08-03T13:31:54.147
Link: CVE-2023-3974
JSON object: View
Redhat Information
No data.
CWE