Description
mosc through 1.0.0 is vulnerable to Arbitrary Code Execution. User input provided to `properties` argument is executed by the `eval` function, resulting in code execution.
Remediation
References
https://snyk.io/vuln/SNYK-JS-MOSC-571492
Related Vulnerabilities
CVE-2021-32860 Vulnerability in npm package izimodal
CVE-2023-37913 Vulnerability in maven package org.xwiki.platform:xwiki-platform-office-importer
CVE-2016-10523 Vulnerability in npm package mqtt-packet
CVE-2022-31127 Vulnerability in npm package next-auth
CVE-2017-16144 Vulnerability in npm package myserver.alexcthomas18