d8s-urls is vulnerable to arbitrary code execution. The vulnerability exists because the democritus-networking package of a specific version of d8s-urls acts as a potential code execution third party backdoor which allows an attacker to inject and execute malicious codes in to the system.