Known CVE vulnerabilities and GitHub Security Advisories affecting the npm package mosc, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (1)
CVE-2020-7672 — CVSS 8.6 (high): mosc through 1.0.0 is vulnerable to Arbitrary Code Execution. User input provided to `properties` argument is executed by the `eval`…