2020-12-11 16:55:21
snyk
PUBLISHED
This affects all versions of package corenlp-js-prefab. The injection point is located in line 10 in index.js. It depends on a vulnerable package corenlp-js-interface. Vulnerability can be exploited with the following PoC: