Nov 10 2025 Popular JavaScript library expr-eval vulnerable to RCE flaw

Source

A critical vulnerability in the popular expr-eval JavaScript library, with over 800,000 weekly downloads on NPM, can be exploited to execute code remotely through maliciously crafted input. [...]