Static-Eval Project: >> Static-Eval Security Vulnerabilities
The static-eval module is intended to evaluate statically-analyzable expressions. In affected versions, untrusted user input is able to access the global function constructor, effectively allowing arbitrary code execution.
CVSS Score
9.8
EPSS Score
0.013
Published
2018-06-07