Lucene search
K

5 matches found

NVD
NVD
added 2026/06/23 5:17 a.m.33 views

CVE-2026-12866

All versions of the package expr-eval are vulnerable to Code Execution via the toJSFunction API. An attacker can execute arbitrary JavaScript by supplying crafted expressions that are compiled into native code using new Function. Because user-controlled expressions are transformed directly into...

9.8CVSS0.00469EPSS
Exploits0References4
OSV
OSV
added 2025/11/05 3:30 a.m.4 views

GHSA-JC85-FPWF-QM7X expr-eval does not restrict functions passed to the evaluate function

The expr-eval library is a JavaScript expression parser and evaluator designed to safely evaluate mathematical expressions with user-defined variables. However, due to insufficient input validation, an attacker can pass a crafted variables object into the evaluate function and trigger arbitrary...

8.6CVSS7.4AI score0.02285EPSS
Exploits0References11
Github Security Blog
Github Security Blog
added 2025/11/05 3:30 a.m.11 views

expr-eval does not restrict functions passed to the evaluate function

The expr-eval library is a JavaScript expression parser and evaluator designed to safely evaluate mathematical expressions with user-defined variables. However, due to insufficient input validation, an attacker can pass a crafted variables object into the evaluate function and trigger arbitrary...

9.8CVSS7.9AI score0.02285EPSS
Exploits0References12Affected Software2
Vulnrichment
Vulnrichment
added 2025/11/05 12:22 a.m.2 views

CVE-2025-12735 CVE-2025-12735

The expr-eval library is a JavaScript expression parser and evaluator designed to safely evaluate mathematical expressions with user-defined variables. However, due to insufficient input validation, an attacker can pass a crafted context object or use MEMBER of the context object into the evaluat...

7.9AI score0.02285EPSS
Exploits0References7
OSV
OSV
added 2025/11/05 12:22 a.m.4 views

CVE-2025-12735 CVE-2025-12735

The expr-eval library is a JavaScript expression parser and evaluator designed to safely evaluate mathematical expressions with user-defined variables. However, due to insufficient input validation, an attacker can pass a crafted context object or use MEMBER of the context object into the evaluat...

9.8CVSS6.4AI score0.02285EPSS
Exploits0References11
Rows per page
Query Builder