Known CVE vulnerabilities and GitHub Security Advisories affecting the npm package jsonata, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (1)
CVE-2024-27307 — CVSS 9.8 (critical): JSONata is a JSON query and transformation language. Starting in version 1.4.0 and prior to version 1.8.7 and 2.0.4, a malicious expression…