CVE-2021-21384

CVE-2021-21384

shescape is a simple shell escape package for JavaScript. In shescape before version 1.1.3, anyone using _Shescape_ to defend against shell injection may still be vulnerable against shell injection if the attacker manages to insert a into the payload. For an example see the referenced GitHub Security Advisory. The problem has been patched in version 1.1.3. No further changes are required.

Source: CVE-2021-21384

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다