0.001 Low
EPSS
Percentile
47.2%
safer-eval is vulnerable to prototype pollution. A lack of validation allows an attacker to inject arbitrary objects using Object.constructor to execute arbitrary code.
Object.constructor
www.npmjs.com/advisories/787