Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

ericcornelissen — Vulnerabilities & Security Advisories 10

Browse all 10 CVE security advisories affecting ericcornelissen. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Ericcornelissen focuses on open-source security research, primarily identifying vulnerabilities in web applications and APIs. Their work commonly exposes remote code execution, cross-site scripting, and privilege escalation flaws, often in widely-used development tools. The researcher maintains a disciplined approach to responsible disclosure, with all 10 CVEs assigned reflecting systematic analysis rather than opportunistic findings. While no major public incidents are directly attributed to their work, their contributions consistently address critical weaknesses in infrastructure components. The researcher's CVE history demonstrates particular attention to input validation and authentication bypass issues, highlighting a consistent focus on preventing unauthorized system access and code execution.

Top products by ericcornelissen: shescape git-tag-annotation-action
CVE IDTitleCVSSSeverityPublished
CVE-2026-32094 Shescape escape() leaves bracket glob expansion active on Bash, BusyBox, and Dash — shescapeCWE-200 7.5AIHighAI2026-03-11
CVE-2025-30222 Shescape has potential environment variable exposure on Windows with CMD — shescapeCWE-200 7.5AIHighAI2025-03-25
CVE-2023-40185 Shescape on Windows escaping may be bypassed in threaded context — shescapeCWE-150 6.5 Medium2023-08-23
CVE-2023-35931 Shescape potential environment variable exposure on Windows with CMD — shescapeCWE-526 3.1 Low2023-06-23
CVE-2022-36064 Shescape Inefficient Regular Expression Complexity vulnerability — shescapeCWE-1333 5.9 Medium2022-09-06
CVE-2022-31179 Insufficient escaping of line feeds for CMD in shescape — shescapeCWE-74 8.1 High2022-08-01
CVE-2022-31180 Insufficient escaping of whitespace in shescape — shescapeCWE-74 9.8 Critical2022-08-01
CVE-2022-24725 Exposure of home directory through shescape on Unix with Bash — shescapeCWE-200 6.2 Medium2022-03-03
CVE-2021-21384 Null characters not escaped in shescape — shescapeCWE-88 6.3 Medium2021-03-18
CVE-2020-15272 Shell-injection in git-tag-annotation GitHub action — git-tag-annotation-actionCWE-78 8.7 High2020-10-26

This page lists every published CVE security advisory associated with ericcornelissen. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.