{"uuid": "07fbb55b-c4aa-46dd-9e61-77de0027c503", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-14189", "type": "seen", "source": "https://t.me/cibsecurity/16060", "content": "\u203c CVE-2020-14189 \u203c\n\nThe execute function in in the Atlassian gajira-comment GitHub Action before version 2.0.2 allows remote attackers to execute arbitrary code in the context of a GitHub runner by creating a specially crafted GitHub issue comment.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-11-10T00:55:50.000000Z"}