CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

22 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-1127

Malware in sbrugna...

8.3CVSS8.3AI score0.00765EPSS

Exploits0References4

RedhatCVE•added 2025/05/22 6:21 a.m.•5 views

CVE-2017-1000491

Shiba markdown live preview app version 1.1.0 is vulnerable to XSS which leads to code execution due to enabled node integration...

6.1CVSS6.5AI score0.00369EPSS

Exploits0References1

HackRead•added 2023/06/02 6:13 p.m.•10 views

Shiba Inu: The Meme Coin Fueling an Open-Source Ecosystem

By Owais Sultan The cryptocurrency niche has come a long way since Bitcoin’s inception and it is now far from the… This is a post from HackRead.com Read the original post: Shiba Inu: The Meme Coin Fueling an Open-Source Ecosystem...

7AI score

Exploits0

OSSF Malicious Packages•added 2022/07/26 9:49 a.m.•3 views

Malicious code in shiba-inu-technologies (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware be0e17205a55c4159c2077a1a4ec77b22f82254b9288dc3eccc349af3d498b3c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score

Exploits0References1

OSV•added 2022/07/26 9:49 a.m.•3 views

MAL-2022-6085 Malicious code in shiba-inu-technologies (npm)

7AI score

Exploits0References1

Snyk•added 2022/06/23 9:24 a.m.•2 views

Malicious Package

Overview shiba-inu-technologies is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this...

9.8CVSS7AI score

Exploits0References3

Github Security Blog•added 2022/05/14 3:49 a.m.•9 views

Shiba vulnerable to XSS leading to code execution

Shiba markdown live preview app version 1.1.0 is vulnerable to XSS which leads to code execution due to enabled node integration...

6.1CVSS6.3AI score0.00369EPSS

Exploits0References4Affected Software1

OSV•added 2022/05/14 3:49 a.m.•12 views

GHSA-JR64-PGGR-J8XJ Shiba vulnerable to XSS leading to code execution

Shiba markdown live preview app version 1.1.0 is vulnerable to XSS which leads to code execution due to enabled node integration...

6.1CVSS6.3AI score0.00369EPSS

Exploits0References3

OSV•added 2021/05/10 6:37 p.m.•13 views

GHSA-JVF4-G24P-2QGW Arbitrary Code Execution in shiba

All versions of package shiba are vulnerable to Arbitrary Code Execution due to the default usage of the function load of the package js-yaml instead of its secure replacement , safeLoad...

8.3CVSS8.4AI score0.00765EPSS

Exploits0References3

Github Security Blog•added 2021/05/10 6:37 p.m.•33 views

Arbitrary Code Execution in shiba

All versions of package shiba are vulnerable to Arbitrary Code Execution due to the default usage of the function load of the package js-yaml instead of its secure replacement , safeLoad...

8.3CVSS8.3AI score0.00765EPSS

Exploits0References4Affected Software1

Veracode•added 2020/10/05 1:20 a.m.•15 views

Arbitrary Code Execution

shiba is vulnerable to arbitrary code execution. The vulnerability exists through the use of the unsafe function load in js-yaml...

8.3CVSS4.4AI score0.00765EPSS

Exploits0References1Affected Software1

OSV•added 2020/10/02 10:15 a.m.•0 views

CVE-2020-7738

All versions of package shiba are vulnerable to Arbitrary Code Execution due to the default usage of the function load of the package js-yaml instead of its secure replacement , safeLoad...

8.3CVSS5.9AI score

Exploits0References1

Prion•added 2020/10/02 10:15 a.m.•9 views

Code injection

All versions of package shiba are vulnerable to Arbitrary Code Execution due to the default usage of the function load of the package js-yaml instead of its secure replacement , safeLoad...

6.5CVSS8.4AI score0.00765EPSS

Exploits0References1

CVE•added 2020/10/02 10:5 a.m.•41 views

CVE-2020-7738

CVE-2020-7738 affects the shiba package. The root cause is the use of js-yaml.load() instead of the secure js-yaml.safeLoad(), enabling Arbitrary Code Execution. Affected: all shiba versions; impact: arbitrary code execution; remediation: Snyk notes no fixed shiba version yet. References include ...

8.3CVSS8.5AI score0.00765EPSS

Exploits0References1Affected Software1

Snyk•added 2020/07/29 3:39 p.m.•1 views

Arbitrary Code Execution

Overview shiba is a Live markdown previewer with linter Affected versions of this package are vulnerable to Arbitrary Code Execution due to the default usage of the function load of the package js-yaml instead of its secure replacement , safeLoad. Remediation There is no fixed version for shiba...

8.3CVSS7.1AI score0.00765EPSS

Exploits0References2

Veracode•added 2018/01/03 6:47 a.m.•14 views

Cross-site Scripting (XSS)

shiba is vulnerable to cross-site scripting XSS attacks. These attacks are possible due to the enabled node integration...

6.1CVSS5.8AI score0.00369EPSS

Exploits0References2Affected Software1

OSV•added 2018/01/03 1:29 a.m.•14 views

CVE-2017-1000491

Shiba markdown live preview app version 1.1.0 is vulnerable to XSS which leads to code execution due to enabled node integration...

6.1CVSS6.5AI score

Exploits0References2