← Back

Javascript Expression Evaluator

javascript_expression_evaluator

Vendor: Jorenbroekema • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
2Jorenbroekema
Silentmatt
2Javascript Expression Evaluator
Javascript Expression Evaluator
Jun 17, 2026
Nov 5, 2025
N/A· v4
9.8 CRITICAL· v3
N/A· v2
The expr-eval library is a JavaScript expression parser and evaluator designed to safely evaluate mathematical expressions with user-defined variables. However, due to insufficient input validation, an attacker can pass...Show more
The expr-eval library is a JavaScript expression parser and evaluator designed to safely evaluate mathematical expressions with user-defined variables. However, due to insufficient input validation, an attacker can pass a crafted context object or use MEMBER of the context object into the evaluate() function and trigger arbitrary code execution.Show less