Name of the Vulnerable Software and Affected Versions node-rules versions prior to 5.0.0

Description The issue arises from the package's failure to sanitize input rules, which are then passed directly to an eval call when using the fromJSON function. This may allow attackers to execute arbitrary code in the system if the rules are user-controlled.

Recommendations Upgrade to version 5.0.0 or later.