Code Injection
A code injection exists in node-df that can allow an attacker to remote code execution by unsanitized input.
Advisories for Npm/Node-Df package
2019
A code injection exists in node-df that can allow an attacker to remote code execution by unsanitized input.