Linkdave Missing Authentication on REST and WebSocket endpoints
The linkdave HTTP server does not enforce authentication on its REST and WebSocket routes. Because this server may be exposed to the internet, any unauthenticated remote attacker can connect to these endpoints.