tts-api is vulnerable to OS Command Injection. The vulnerability is due to a lack of validation in the onSpeechDone function within app.js. This could allow an attacker to gain unauthorized access by executing unauthorized…Read More