safer-eval before 1.3.2 are vulnerable to Arbitrary Code Execution. A payload using constructor properties can escape the sandbox and execute arbitrary code.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Safer-eval |
Safer-eval_project |
* |
1.3.2 (excluding) |
References