CVE-2021-4329
CVE-2021-4329 (json-logic-js 2.0.0) has a command-injection vulnerability in the logic.js component, enabling arbitrary code execution as described across multiple sources. The issue affects json-logic-js 2.0.0 and is fixed by upgrading to 2.0.1, with the patch identified as c1dd82f5b15d8a553bb7a...