0.005 Low
EPSS
Percentile
76.5%
mock2easy is vulnerable to remote code execution (RCE). A malicious user can inject and execute arbitrary code due to the lack of sanitization of user input before executing the eval function.
github.com/advisories/GHSA-g4xj-wcq6-qwx5
github.com/appLhui/mock2easy/blob/master/server/setConfiguration.js#L97
github.com/appLhui/mock2easy/issues/2
github.com/cristianstaicu
www.microsoft.com/en-us/research/wp-content/uploads/2017/01/nodejs_tr.pdf
www.npmjs.com/package/mock2easy