Silentmatt Expr-eval

2 CVEs affecting Silentmatt Expr-eval. Latest disclosed: 2025-11-14. Critical: 1, High: 1.

Top CVEs affecting Silentmatt Expr-eval
CVESeverityScorePublishedSummary
CVE-2025-12735Critical9.82025-11-05The expr-eval library is a JavaScript expression parser and evaluator designed to safely evaluate mathematical expressions with user-defined variables. However…
CVE-2025-13204High7.32025-11-14npm package `expr-eval` is vulnerable to Prototype Pollution. An attacker with access to express eval interface can use JavaScript prototype-based inheritance…