CVE-2023-31128P2HIGHCVSS 8.8≥ 0.9.0, < 0.9.19·vmaster < a46d9855+1 more2023-05-26
CVE-2023-31128 [HIGH] CWE-78 CVE-2023-31128: NextCloud Cookbook is a recipe library app. Prior to commit a46d9855 on the `master` branch and comm
NextCloud Cookbook is a recipe library app. Prior to commit a46d9855 on the `master` branch and commit 489bb744 on the `main-0.9.x` branch, the `pull-checks.yml` workflow is vulnerable to command injection attacks because of using an untrusted `github.head_ref` field. The `github.head_ref` value is an attacker-controlled value. Assigning the value to `
nvd