N/A

Versions of the package jsonpath before 1.3.0 are vulnerable to Arbitrary Code Injection via unsafe evaluation of user-supplied JSON Path expressions. The library relies on the static-eval module to process JSON Path input, which is not designed to handle untrusted data safely. An attacker can exploit this vulnerability by supplying a malicious JSON Path expression that, when evaluated, executes arbitrary JavaScript code, leading to Remote Code Execution in Node.js environments or Cross-site Scripting (XSS) in browser contexts. This affects all methods that evaluate JSON Paths against objects, including .query, .nodes, .paths, .value, .parent, and .apply.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

对生成代码的控制不恰当(代码注入)

jsonpath 安全漏洞

jsonpath是David Chester个人开发者的一个JSONPath引擎。 jsonpath存在安全漏洞，该漏洞源于对用户提供的JSON Path表达式进行不安全评估，可能导致任意代码注入，在Node.js环境中引发远程代码执行或在浏览器环境中引发跨站脚本攻击。

N/A

N/A