EPSS
Percentile
48.2%
safer-eval is vulnerable to prototype pollution. A lack of validation allows an attacker to inject arbitrary objects using Object.constructor to execute arbitrary code.
Object.constructor
github.com/commenthol/safer-eval/pull/6