CVE-2021-23334

Code Injection in npm/static-eval

Identifier

CVE-2021-23334

Package Slug

npm/static-eval

Vulnerability

Code Injection

Description

All versions of package static-eval are vulnerable to arbitrary code execution using FunctionExpressions and TemplateLiterals.

Affected Versions

All versions

Solution

Unfortunately, there is no solution available yet.

Last Modified

2021-02-19

source