The host is installed with Node.js 12.0.0 before 12.18.4, 14.0.0 before 14.11.0 and is prone to an HTTP request smuggling vulnerability. A flaw is present in the application which fails to handle malicious payloads. Successful exploitation allows an attacker to hijack user sessions, poison cookies, perform clickjacking and a multitude of other attacks depending on the architecture of the underlying system.