The vulnerable code was identified by the security research team at PatchStack