0.085 Low
EPSS
Percentile
94.5%
cd-messenger through 2.7.26 is vulnerable to Arbitrary Code Execution. User input provided to the color argument executed by the eval function resulting in code execution.
color
eval
nvd.nist.gov/vuln/detail/CVE-2020-7675
snyk.io/vuln/SNYK-JS-CDMESSENGER-571493