Paaai

Name of the Vulnerable Software and Affected Versions nocobase plugin-workflow-javascript versions up to 2.0.23 Description A remote attack can lead to a sandbox issue and remote code execution. This issue affects the `createSafeConsole()` function in the `packages/plugins/@nocobase/plugin-workflow-javascript/src/server/Vm.js` file. Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.