limdu is vulnerable to command injection. The vulnerability exists because it allows an attacker to inject malicious code via the function trainBatch
in BinaryClassifierSet.js
as it relies on shell execution, such as SVM Perf, SVM Linear or Adaboos.