All versions of the package wifey are vulnerable to Command Injection via the connect() function due to improper input sanitization.
もっと詳しく