2020-05-15 18:50:27
hackerone
PUBLISHED
Lack of output sanitization allowed an attack to execute arbitrary shell commands via the logkitty npm package before version 0.7.1.