HIGH 8.1 npm
GHSA-28xr-mwxg-3qc8 · CVE-2022-24066 Command injection in simple-git
Modified: 1/14/2025
package
npm / simple-git
pkg:npm/simple-git
HIGH 8.1 npm
GHSA-3f95-r44v-8mrg · CVE-2022-24433 Command injection in simple-git
Modified: 1/14/2025
HIGH 8.1 npm
GHSA-9p95-fxvg-qgq2 · CVE-2022-25912 simple-git vulnerable to Remote Code Execution when enabling the ext transport protocol
Modified: 11/8/2023
CRITICAL 9.8 npm
GHSA-9w5j-4mwv-2wj8 · CVE-2022-25860 Remote code execution in simple-git
Modified: 4/1/2025
CRITICAL 9.8 npm
GHSA-hffm-xvc3-vprc · CVE-2026-6951 simple-git is vulnerable to Remote Code Execution
Modified: 5/26/2026
HIGH 8.1 npm
GHSA-jcxm-m3jx-f287 · CVE-2026-28291 simple-git Affected by Command Execution via Option-Parsing Bypass
Modified: 4/14/2026
CRITICAL 9.8 npm
GHSA-r275-fr43-pm7q · CVE-2026-28292 simple-git has blockUnsafeOperationsPlugin bypass via case-insensitive protocol.allow config key enables RCE
Modified: 4/14/2026