GitPython vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
GHSA-MV93-W799-CJ2WHighGitPython: GitPython: Newline injection in config_writer() section parameter bypasses CVE-2026-42215 patch,…CVE-2026-44244HighGitPython: GitPython: Newline injection in config_writer().set_value() enables RCE via core.hooksPathCVE-2026-44243HighGitPython: GitPython reference APIs has a path traversal vulnerability that allows arbitrary file write and…CVE-2026-42215HighGitPython: GitPython has Command Injection via Git options bypassCVE-2026-42284HighGitPython: GitPython: Unsafe option check validates multi_options before shlex.split transformationCVE-2024-22190HighGitPython: Untrusted search path under some conditions on Windows allows arbitrary code executionCVE-2023-41040MediumGitPython: GitPython blind local file inclusionCVE-2023-40590Highgitpython: GitPython untrusted search path on Windows systems leading to arbitrary code executionCVE-2023-40267CriticalGitPython: GitPython vulnerable to remote code execution due to insufficient sanitization of input argumentsCVE-2022-24439CriticalGitPython: GitPython vulnerable to Remote Code Execution due to improper user input validation

Stop the waste.
Protect your environment with Kodem.