#expr-eval
#expr-eval

[ follow ]

Critical vulnerability exposed in JavaScript library expr-eval

A critical expr-eval vulnerability (CVE-2025-12735) permits remote code execution by abusing evaluate() context validation, risking full system compromise.

Information security

fromBleepingComputer

2 weeks ago

Popular JavaScript library expr-eval vulnerable to RCE flaw

Critical RCE vulnerability (CVE-2025-12735) in expr-eval/expr-eval-fork allows remote code execution via unvalidated Parser.evaluate() context variables.

[ Load more ]

#expr-eval#expr-eval

Critical vulnerability exposed in JavaScript library expr-eval

Popular JavaScript library expr-eval vulnerable to RCE flaw

#expr-eval
#expr-eval