Victoria Series Release Notes

4.0.0

Security Issues

  • Uses json.loads instead of eval() for JSON parsing, which could allow users of the Blazar dashboard to trigger code execution on the Horizon host as the user the Horizon service runs under.