2019-09-13 20:15:11 2019-09-25 22:15:11

NPM package gitlabhook version 0.0.17 is vulnerable to a Command Injection vulnerability. Arbitrary commands can be injected through the repository name.