Vulnerabilities > Shescape Project > Shescape > 1.5.10
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-23 | CVE-2023-40185 | Improper Neutralization of Escape, Meta, or Control Sequences vulnerability in Shescape Project Shescape shescape is simple shell escape library for JavaScript. | 8.6 |
| 2023-06-23 | CVE-2023-35931 | Information Exposure Through Environmental Variables vulnerability in Shescape Project Shescape Shescape is a simple shell escape library for JavaScript. | 4.3 |
| 2022-10-27 | CVE-2022-25918 | Unspecified vulnerability in Shescape Project Shescape 1.5.10/1.6.0 The package shescape from 1.5.10 and before 1.6.1 are vulnerable to Regular Expression Denial of Service (ReDoS) via the escape function in index.js, due to the usage of insecure regex in the escapeArgBash function. | 7.5 |