node-eventsource: EventSource client for Node.js and Browser EventSource could leak sensitive information if it opened a specially crafted input file.