Vulnerabilities in ljharb

3 results

CVE-2022-0841LOWOS Command Injection in ljharb/npm-lockfileEPSS 2.7%CVE-2026-13311HIGHshell-quote parse() is quadratic in token count, enabling denial of serviceEPSS 0.4%CVE-2026-8723MEDIUMqs.stringify crashes on null/undefined entries in comma-format arrays under encodeValuesOnlyEPSS 0.4%