CVE 2020-7672

mosc through 1.0.0 is vulnerable to Arbitrary Code Execution. User input provided to `properties` argument is executed by the `eval` function, resulting in code execution.

See the CVE page on Mitre.org for more details.