mosc@1.0.0 vulnerabilities

A simple inline javascript object model builder

Direct Vulnerabilities

Known vulnerabilities in the mosc package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • H
Arbitrary Code Execution

mosc is an a simple inline object model builder for NodeJS (A small port exists for client-side javascript).

Affected versions of this package are vulnerable to Arbitrary Code Execution. User input provided to properties argument is executed by the eval function, resulting in code execution.

How to fix Arbitrary Code Execution?

There is no fixed version for mosc.

*