Silentmatt Expr-eval
2 CVEs affecting Silentmatt Expr-eval. Latest disclosed: 2025-11-14. Critical: 1, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-12735 | Critical | 9.8 | 2025-11-05 | The expr-eval library is a JavaScript expression parser and evaluator designed to safely evaluate mathematical expressions with user-defined variables. However… |
CVE-2025-13204 | High | 7.3 | 2025-11-14 | npm package `expr-eval` is vulnerable to Prototype Pollution. An attacker with access to express eval interface can use JavaScript prototype-based inheritance… |