POC for NPM package debug Issue #737 Repository Steps to reproduce: Install a vulnerable version of debug: npm i debug@2.6.9 Run the exploit: node exploit.js You can see that the program never reaches the second console.log.