JSONPath-Plus is a widely used [0] JavaScript package to query JSON objects with the JSONPath query language.<p>Recent versions allow trivial RCE. [1]<p>[0] 800+ direct dependants <a href="https://www.npmjs.com/package/jsonpath-plus?activeTab=dependents" rel="nofollow">https://www.npmjs.com/package/jsonpath-plus?activeTab=depend...</a>
[1] <a href="https://github.com/JSONPath-Plus/JSONPath/issues/226">https://github.com/JSONPath-Plus/JSONPath/issues/226</a>