0.004 Low
EPSS
Percentile
73.9%
pixl-class is vulnerable to remote code execution (RCE). The attack is possible because it uses eval function in class.js, allowing an attacker to inject malicious script and to get executed.
eval
class.js
github.com/jhuckaby/pixl-class/commit/47677a3638e3583e42f3a05cc7f0b30293d2acc8
github.com/jhuckaby/pixl-class/commit/47677a3638e3583e42f3a05cc7f0b30293d2acc8,