Avenwu Whistle Cross-Site Request Forgery (CSRF)
Cross-Site Request Forgery (CSRF) in Avenwu Whistle v.2.9.90 and before allows attackers to perform malicious API calls, resulting in the execution of arbitrary code on the victim's machine.
Advisories for Npm/Whistle package
2024