Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

Security Vulnerability with static-eval@2.0.2 #154

Open
skvijay007 opened this issue Feb 18, 2021 · 2 comments
Open

Security Vulnerability with static-eval@2.0.2 #154

skvijay007 opened this issue Feb 18, 2021 · 2 comments

Comments

@skvijay007
Copy link

Issue picked up and reported in Snyk: https://snyk.io/vuln/SNYK-JS-STATICEVAL-1056765
@natyleitner
Copy link

Any chance of using the POC solution here?

@chunkbro
Copy link

JFrog Xray scan shows Arbitrary Code execution vulnerability for static-eval@2.0.2 and jsonpath@1.1.0 is flagged.

# for free to join this conversation on GitHub. Already have an account? # to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@skvijay007 @chunkbro @natyleitner