Vulnerabilities > Shiba Project
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-10-02 | CVE-2020-7738 | Unspecified vulnerability in Shiba Project Shiba All versions of package shiba are vulnerable to Arbitrary Code Execution due to the default usage of the function load() of the package js-yaml instead of its secure replacement , safeLoad(). | 6.5 |
2018-01-03 | CVE-2017-1000491 | Cross-site Scripting vulnerability in Shiba Project Shiba 1.1.0 Shiba markdown live preview app version 1.1.0 is vulnerable to XSS which leads to code execution due to enabled node integration. | 4.3 |