CVE-2026-28291 | steveukx git-js up to 3.31.x os command injection (GHSA-jcxm-m3jx-f287)

A vulnerability marked as critical has been reported in steveukx git-js up to 3.31.x. This issue affects some unknown processing. Performing a manipulation results in os command injection.

This vulnerability is reported as CVE-2026-28291. The attack is possible to be carried out remotely. No exploit exists.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More