Filtered by vendor Safer-eval Project Subscriptions
Total 3 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2019-10769 1 Safer-eval Project 1 Safer-eval 2024-11-21 9.8 Critical
safer-eval is a npm package to sandbox the he evaluation of code used within the eval function. Affected versions of this package are vulnerable to Arbitrary Code Execution via generating a RangeError.
CVE-2019-10760 1 Safer-eval Project 1 Safer-eval 2024-11-21 9.9 Critical
safer-eval before 1.3.2 are vulnerable to Arbitrary Code Execution. A payload using constructor properties can escape the sandbox and execute arbitrary code.
CVE-2019-10759 1 Safer-eval Project 1 Safer-eval 2024-11-21 9.9 Critical
safer-eval before 1.3.4 are vulnerable to Arbitrary Code Execution. A payload using constructor properties can escape the sandbox and execute arbitrary code.