Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:CVE-2021-21384
HistoryMar 19, 2021 - 12:15 a.m.

CVE-2021-21384

2021-03-1900:15:11
Google
osv.dev
7
cve-2021-21384
shescape
javascript
shell injection
github security advisory
software

EPSS

0.001

Percentile

34.7%

JSON

shescape is a simple shell escape package for JavaScript. In shescape before version 1.1.3, anyone using Shescape to defend against shell injection may still be vulnerable against shell injection if the attacker manages to insert a into the payload. For an example see the referenced GitHub Security Advisory. The problem has been patched in version 1.1.3. No further changes are required.

Related

cvelist 1
veracode 1
nodejs 1
cve 1
prion 1
osv 1
github 1
nvd 1
cvelist
cvelist
CVE-2021-21384 Null characters not escaped in shescape
2021-03-18 23:50:13
veracode
veracode
OS Command Injection
2021-03-19 01:49:00
nodejs
nodejs
Command Injection
2021-03-18 23:52:36
cve
cve
CVE-2021-21384
2021-03-19 00:15:11
prion
prion
Sql injection
2021-03-19 00:15:00
osv
osv
Null characters not escaped
2021-03-18 23:47:56
github
github
Null characters not escaped
2021-03-18 23:47:56
nvd
nvd
CVE-2021-21384
2021-03-19 00:15:11

EPSS

0.001

Percentile

34.7%

JSON
Related for OSV:CVE-2021-21384
cvelist1veracode1nodejs1cve1prion1osv1github1nvd1