Vulnerabilities > CVE-2020-7738 - Unspecified vulnerability in Shiba Project Shiba
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
All versions of package shiba are vulnerable to Arbitrary Code Execution due to the default usage of the function load() of the package js-yaml instead of its secure replacement , safeLoad().
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |