Sails.js < 1.0.0-46 - Denial of Service via Empty WebSocket Pathname
Sails.js before v1.0.0-46 allows attackers to cause a denial of service with a single request because there is no error handler in sails-hook-sockets to handle an empty pathname in a WebSocket request.