Haoliang Gao

2 exploits Active since Aug 2018
CVE-2018-3786 WRITEUP CRITICAL WRITEUP
egg-scripts < 2.8.1 - OS Command Injection via Command Line Argument
A command injection vulnerability in egg-scripts <v2.8.1 allows arbitrary shell command execution through a maliciously crafted command line argument.
CVSS 9.8
CVE-2021-23568 WRITEUP HIGH WRITEUP
extend2 < 1.0.1 - Prototype Pollution via Unsafe Recursive Merge
The package extend2 before 1.0.1 are vulnerable to Prototype Pollution via the extend function due to unsafe recursive merge.
CVSS 7.3