smartclash
commented
6 years ago Hey @tiblu, thanks for showing that up to me. I have already made changes in my local repository. Since this is a WIP project, I didn't update it. I will sort out all the files in my local project and push 'em to this.
Thank you once again :)
You are using a vulnerable version of
express-cookie@1.4.7which enables remote code injection and execution through it's dependencygetcookies@1.12.3.